The Vulnerability Laboratory Core Research Team discovered an application-side input validation web vulnerability in the official JavaScript Anywhere v3.0.4 iOS mobile web-application.
>> AUTHOR: deepcore
An independent vulnerability laboratory researcher discovered multiple client-side vulnerabilities in the official Ebay Inc Pages online service web-application.
WordPress Newsletter Pro plugin version 2.5.3.3 suffers from an open redirection vulnerability.
WordPress Clikstats plugin version 0.8 suffers from an open redirection vulnerability.
IBM Security Website suffers from a cross site scripting vulnerability.
FTPShell Client version 5.24 suffers from a local buffer overflow vulnerability.
This one is complicated, but allows an attacker to read any file on the filesystem by clicking a link. You don’t even have to know the name or path of…
Joomla Pricelist component version 3.2.1 suffers from a remote SQL injection vulnerability.
Getdpd suffered from a cross site scripting vulnerability in the filename value.
Getdpd suffered from a cross site scripting vulnerability in the id parameter.