WordPress Uncode Theme 1.3.1 – Arbitrary File Upload
>> ARCHIVE: 2016-06
WordPress Uncode Theme 1.3.1 – Arbitrary File Upload
WordPress Double Opt-In for Download Plugin 2.0.9 – SQL Injection
Electroweb Online Examination System 1.0 – SQL Injection
Joomla Jumi component version 3.0.5 suffers from a cross site scripting vulnerability.
IBM Cognos version 11.0 suffers from a content spoofing vulnerability.
Notilus version 2012 R3 suffers from a remote SQL injection vulnerability.
WordPress WP Mobile Detector plugin versions 3.5 and below suffer from a remote shell upload vulnerability.
WordPress Realia plugin version 0.8.5 suffers from a cross site scripting vulnerability.
This Metasploit module exploits a PHP object injection vulnerability in Magento 2.0.6 or prior.
http://www.dongyenmd.go.th/eg.htm notified by Dr.SiLnT HilL