WordPress Plugin Form Maker 1.13.3 – SQL Injection
>> AUTHOR: deepcore
WordPress Plugin Form Maker 1.13.3 – SQL Injection
This archive contains all of the 198 exploits added to Packet Storm in May, 2019.
Microsoft Windows Remote Desktop BlueKeep denial of service exploit.
The ZyXEL P-660HN-T1 V2 rpWLANRedirect.asp page is missing authentication and discloses an administrator password.
Shopware version 5.5.6 suffers from multiple cross site scripting vulnerabilities.
Apple Security Advisory 2019-5-30-1 – AirPort Base Station Firmware Update 7.9.1 is now available and addresses denial of service and null pointer vulnerabilities.
Serv-U FTP Server version 15.1.6.25 suffers from a local privilege escalation vulnerability via authentication bypass.
Analysis of CVE-2019-0708 (BlueKeep)
pfSense version 2.4.4-p3 with ACMEPackage version 0.5.7_1 suffers from a persistent cross site scripting vulnerability.
WordPress Nya-Comment-DoFollow plugin version 1.0 suffers from an open redirection vulnerability.