WordPress Easy Cookie Policy plugin version 1.6.2 suffers from persistent cross site scripting vulnerability due to a broken access control.
Joomla! versions 4.1.0 and below suffer from path traversal and file overwrite vulnerabilities due to misplaced trust in the handling of compressed archives.
Chrome suffers from a heap use-after-free vulnerability in safe_browsing::ThreatDetails::OnReceivedThreatDOMDetails. Versions affected include Google Chrome 96.0.4664.110 (Official Build) (64-bit) and Chromium 99.0.4807.0 (Developer Build) (64-bit).
Kramer VIAware 2.5.0719.1034 – Remote Code Execution (RCE)
Tags:
0day,
remote exploit
PostgreSQL 9.3-11.7 – Remote Code Execution (RCE) (Authenticated)
Tags:
0day,
remote exploit
CSZ CMS 1.2.9 – ‘Multiple’ Blind SQLi(Authenticated)
Tags:
0day,
remote exploit
WordPress Plugin video-synchro-pdf 1.7.4 – Local File Inclusion
Tags:
0day,
remote exploit
WordPress Plugin cab-fare-calculator 1.0.3 – Local File Inclusion
Tags:
0day,
remote exploit
WordPress Plugin Curtain 1.0.2 – Cross-site Request Forgery (CSRF)
Tags:
0day,
remote exploit
Atom CMS 2.0 – Remote Code Execution (RCE)
Tags:
0day,
remote exploit