The default rules for the WFP connect layers permit certain executables to connect TCP sockets in AppContainers without capabilities leading to elevation of privilege.
PEEL Shopping version 9.3.0 suffers from a remote SQL injection vulnerability.
HEUR.Backdoor.Win32.Generic malware suffers from an unauthenticated open proxy vulnerability.
HEUR.Backdoor.Win32.Generic malware suffers from an unauthenticated open proxy vulnerability.
Backdoor.Win32.IRCBot.gen malware suffers from having a weak hardcoded password.
HEUR.Backdoor.Win32.Winnti.gen malware suffers from an insecure permissions vulnerability.
WordPress LearnPress plugin versions prior to 3.2.6.8 suffer from a remote time-based blind SQL injection vulnerability.
WordPress LearnPress plugin versions prior to 3.2.6.9 suffer from a privilege escalation vulnerability.
HEUR.Backdoor.Win32.Winnti.gen malware suffers from an insecure permissions vulnerability.
Backdoor.Win32.Agent.bjev malware suffers from an insecure permissions vulnerability.