An independent vulnerability laboratory researcher discovered a client-side cross site scripting web vulnerability in the official WordPress Good News Themes.
>> ARCHIVE: 2016-02
Zimbra versions 8.0.9 GA and below suffer from a cross site request forgery vulnerability.
Centreon versions 2.5.3 and below suffer from a remote code execution vulnerability.
Proxmox VE versions 3 and 4 suffers from privilege escalation, code execution, and cross site scripting vulnerabilities.
WordPress More Fields <= 2.1 Plugin – CSRF Vulnerability
Comodo Anti-Virus SHFolder.DLL – Local Privilege Elevation Exploit
GIMP for Windows suffers from a dll hijacking vulnerability.
WordPress User Submitted Posts plugin version 20151113 suffers from a persistent cross site scripting vulnerability.
JSN PowerAdmin Joomla! extension version 2.3.0 suffers from cross site request forgery, code execution, and cross site scripting vulnerabilities.
Open Web Analytics version 1.5.7 suffers from a cross site scripting vulnerability.