>> ARCHIVE: 2016-06

AjaxExplorer version 1.10.3.2 suffers from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.

PHPList version 3.2.4 suffers from cross site request forgery and cross site scripting vulnerabilities.

Liferay CE versions prior to 6.2 CE GA6 suffer from a persistent cross site scripting vulnerability.

Joomla SecurityCheck component version 2.8.9 suffers from cross site scripting and remote SQL injection vulnerabilities.

This archive contains all of the 151 exploits added to Packet Storm in May, 2016.

A SIGSEGV crash due to an invalid memory read can be observed in an ASAN build of Wireshark.