AjaxExplorer version 1.10.3.2 suffers from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.
PHPList 3.2.4 Cross Site Request Forgery / Cross Site Scripting
PHPList version 3.2.4 suffers from cross site request forgery and cross site scripting vulnerabilities.
Liferay CE Stored Cross Site Scripting
Liferay CE versions prior to 6.2 CE GA6 suffer from a persistent cross site scripting vulnerability.
Joomla SecurityCheck 2.8.9 Cross Site Scripting / SQL Injection
Joomla SecurityCheck component version 2.8.9 suffers from cross site scripting and remote SQL injection vulnerabilities.
Packet Storm New Exploits For May, 2016
This archive contains all of the 151 exploits added to Packet Storm in May, 2016.
Wireshark erf_meta_read_tag SIGSEGV Invalid Memory Read
A SIGSEGV crash due to an invalid memory read can be observed in an ASAN build of Wireshark.
[dos] – Websockify (C Implementation) 0.8.0 – Buffer Overflow
Websockify (C Implementation) 0.8.0 – Buffer Overflow
[webapps] – Joomla SecurityCheck Extension 2.8.9 – Multiple Vulnerabilities
Joomla SecurityCheck Extension 2.8.9 – Multiple Vulnerabilities
[webapps] – Liferay CE < 6.2 CE GA6 – Stored XSS
Liferay CE < 6.2 CE GA6 – Stored XSS
[webapps] – Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 – Unauthenticated File Upload
Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 – Unauthenticated File Upload