WordPress leenk.me Plugin 2.5.0 – CSRF/XSS
>> ARCHIVE: 2016-04
WordPress leenk.me Plugin 2.5.0 – CSRF/XSS
WordPress Kento Post View Counter Plugin 2.8 – CSRF/XSS
http://bdn.dmsc.moph.go.th/index.html notified by DrXx
http://namvan.go.th notified by MuhmadEmad
http://bangtoey.go.th notified by MuhmadEmad
http://romyenck.go.th notified by MuhmadEmad
The vulnerability laboratory core research team discovered an application-side validation vulnerability in the official C & C++ for OS web-application (api).
An independent vulnerability laboratory researcher discovered multiple client-side cross site scripting vulnerabilities in the official Direct Admin v1.50.0 hosting panel web-application.
OpenWGA Developer Studio version 3.1.0 suffers from an arbitrary code execution vulnerability when using the File OpenDialog box enabling the attacker to execute any binary he or she chooses including…