Quick.Cart version 6.6 suffers from a cross site request forgery vulnerability.
>> AUTHOR: deepcore
TestLink version 1.9.14 suffers from a cross site request forgery vulnerability.
TestLink version 1.9.14 suffers from a persistent cross site scripting vulnerability.
Google AdWords API PHP client library versions 6.2.0 and below suffer from an XML eXternal Entity injection vulnerability.
This Metasploit module exploits an arbitrary file upload in the WordPress Ajax Load More version 2.8.1.1. It allows you to upload arbitrary php files and get remote code execution. This…
PHPMyLicense 3.0.0 – 3.1.4 – DoS
YESWIKI 0.2 – Path Traversal Vulnerability
Jenkins 1.633 – Unauthenticated Credential Recovery
Google AdWords <= 6.2.0 API client libraries – XML eXternal Entity Injection (XXE)
Huawei HG630a and HG630a-50 – Default SSH Admin Password on ADSL Modems