An independent vulnerability laboratory research team discovered multiple remote sql injection vulnerabilities in the Techsoft Content Management System.
PQI Air Pen Express 6W51-0000R2 and 6W51-0000R2XXX – Multiple Vulnerabilities
Tags: 0day, remote exploitAn independent vulnerability laboratory researcher discovered a cross site scripting vulnerabilities in the WordPress Scoreme Theme.
Axil CMS version 3.0 suffers from a cross site scripting vulnerability.
Axil CMS version 0.1 suffers from a remote SQL injection vulnerability that allows for login bypass.
PHP version 5.5.33 suffers from an invalid memory write condition in phar on filename with in the name.