Django 3.0 – Cross-Site Request Forgery Token Bypass
>> ARCHIVE: 2020-04
Django 3.0 – Cross-Site Request Forgery Token Bypass
LimeSurvey version 4.1.11 suffers from a File Manager path traversal vulnerability.
Memu Play version 7.1.3 suffers from an insecure folder permissions vulnerability.
Nsauditor version 3.2.0.0 denial of service proof of concept exploit.
WordPress Hotel Booking System Pro plugin version 1.1 suffers from a cross site scripting vulnerability.
Online Hotel Booking System Pro version 1.3 suffers from a cross site scripting vulnerability.
Product Key Explorer version 4.2.2.0 Key denial of service proof of concept exploit.
Triologic Media Player version 8 suffers from a .m3l local buffer overflow vulnerability.
WordPress Car Rental System plugin version 1.3 suffers from a cross site scripting vulnerability.
Frigate version 3.3.6 denial of service proof of concept exploit.