CentOS Web Panel 0.9.8.789 – NameServer Field Persistent Cross-Site Scripting
>> AUTHOR: deepcore
CentOS Web Panel 0.9.8.789 – NameServer Field Persistent Cross-Site Scripting
WordPress AND-AntiBounce plugin version 1.0.3 suffers from an open redirection vulnerability.
Microsoft Windows Win32k local privilege escalation proof of concept exploit.
WordPress WP-Forum plugin version 1.7.8 suffers from a database disclosure vulnerability.
SJS Simple Job Script suffers from cross site scripting and remote SQL injection vulnerabilities.
Jettweb Php Hazir ilan Sitesi Scripti version 2 suffers from a remote SQL injection vulnerability.
Rukovoditel ERP and CRM version 2.4.1 suffers from a cross site scripting vulnerability.
XooGallery suffers from multiple remote SQL injection vulnerabilities.
XooDigital suffers from a remote SQL injection vulnerability.
Firefox versions prior to 66.0.1 suffer from an Array.prototype.slice buffer overflow vulnerability.