Zend Framework ZF1 version 1.x suffers from a database configuration file disclosure vulnerability.
>> AUTHOR: deepcore
ZRECore version 1.3.1 suffers from a database configuration file disclosure vulnerability.
GetSimpleCMS version 3.3.13 suffers from an open redirection vulnerability.
MyBB Trash Bin Plugin 1.1.3 – Cross-Site Scripting / Cross-Site Request Forgery
Navicat for Oracle 12.1.15 – “Password” Denial of Service (PoC)
VSCO 1.1.1.0 – Denial of Service (PoC)
Jinja2 2.10 – ‘from_string’ Server Side Template Injection
qdPM 9.1 – ‘search_by_extrafields[]’ SQL Injection
Free IP Switcher 3.1 – ‘Computer Name’ Denial of Service (PoC)
AirMore 1.6.1 – Denial of Service (PoC)