MeteoTemplate version 17.1 with the Nectarine windDirection plugin version 2.2 suffers from an open redirection vulnerability.
MyBB version 1.6.x with ChangUonDyU Chatbox plugin version 3.6.0 suffers from a cross site scripting vulnerability.
Web Wiz Forums version 12.01 suffers from a database disclosure vulnerability.
WordPress NativeChurch Multi-Purpose theme version 5.0.x suffers from a file download vulnerability.
Zarr Software Warwickshire version 1.x suffers from an open redirection vulnerability.
Linux suffers from out-of-bounds read and write vulnerabilities in the SNMP NAT module.
Researchers from Ruhr-University Bochum in Germany have broken digital signatures on PDFs and managed to create fake signatures on 21 of 22 viewer apps and five out of the seven online PDF digital signing services. This archive contains both whitepapers produced by the university.
Drupal versions prior to 8.6.10 and 8.5.11 suffer from a REST module remote code execution vulnerability.
News Website Script version 2.0.5 suffers from a remote SQL injection vulnerability.
Advance Gift Shop Pro Script version 2.0.3 suffers from a remote SQL injection vulnerability.