ProjetSend version r582 suffers from authentication bypass, remote SQL injection, insecure direct object reference, and directory traversal / arbitrary file read vulnerabilities.
>> ARCHIVE: 2016-01
The Vulnerability Laboratory Core Research Team discovered a client-side cross site scripting web vulnerability in official Netlife Photosuite Pro, manufactured by Netlife AS.
los818 CMS 2016 Q1 suffers from a remote SQL injection vulnerability.
WebMartIndia CMS 2016 Q1 suffers from a remote SQL injection vulnerability.
Liga Manager Online (LMO) version 4.0.2 suffers from a cross site scripting vulnerability.
eBay Magento suffered from a persistent mail encoding vulnerability.
New Era Company suffers from a remote SQL injection vulnerability.
Ramui Web Hosting Directory Script version 4.0 suffers from a remote file inclusion vulnerability.
Ramui Forum Script version 9.0 suffers from a remote SQL injection vulnerability.
Classic Infomedia suffers from an authentication bypass vulnerability.