TP-Link TL-WR840N and TL-WR841N suffer from an authentication bypass vulnerability.
>> ARCHIVE: 2018-05
Joomla JoomOCShop component version 1.0 suffers from a cross site request forgery vulnerability.
Joomla Full Social extension version 1.1.0 suffers from a remote SQL injection vulnerability.
WordPress Events Calendar plugin version 1.0 suffers from a remote SQL injection vulnerability.
The mobi_parse_mobiheader function in read.c in libmobi version 0.3 allows remote attackers to cause an information disclosure (heap-buffer-overflow out-of-bounds read) via a crafted mobi file.
Appnitro MachForm suffers from remote file upload, remote SQL injection, and path traversal vulnerabilities.
Facebook Graph OpenSearch Phone Number metadata crosswalk mapping proof of concept exploit.
IssueTrak version 7.0 suffers from a remote SQL injection vulnerability.
Facebook Clone Script version 1.0.5 suffers from a cross site request forgery vulnerability.
MyBB ChangUonDyU plugin version 1.0.2 suffers from a cross site scripting vulnerability.