:: Deepquest ::

AjaxExplorer version 1.10.3.2 suffers from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.

PHPList version 3.2.4 suffers from cross site request forgery and cross site scripting vulnerabilities.

Liferay CE versions prior to 6.2 CE GA6 suffer from a persistent cross site scripting vulnerability.

Joomla SecurityCheck component version 2.8.9 suffers from cross site scripting and remote SQL injection vulnerabilities.

This archive contains all of the 151 exploits added to Packet Storm in May, 2016.

A SIGSEGV crash due to an invalid memory read can be observed in an ASAN build of Wireshark.

Websockify (C Implementation) 0.8.0 – Buffer Overflow

Joomla SecurityCheck Extension 2.8.9 – Multiple Vulnerabilities

Liferay CE < 6.2 CE GA6 – Stored XSS

Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 – Unauthenticated File Upload