WordPress Contact Form Generator version 2.0.1 suffers from multiple cross site request forgery vulnerabilities.
>> AUTHOR: deepcore
JSPMySQL Administrador version 1 suffers from cross site request forgery and cross site scripting vulnerabilities.
NETGEAR WMS5316 ProSafe 16AP Wireless Management System suffers from authentication bypass and privilege escalation vulnerabilities.
FireEye appliances suffer from an arbitrary file disclosure vulnerability.
This Metasploit module exploits an OS command injection vulnerability in a web-accessible CGI script used to change passwords for locally-defined proxy user accounts. Valid credentials for such an account are…
Shoot zend_executor_globals to bypass php disable_functions
Cisco Sourcefire User Agent 2.2 – Insecure File Permissions
IBM AIX High Availability Cluster Multiprocessing (HACMP) Local Privilege Escalation 0day
Advantech WebAccess 8.0, 3.4.3 ActiveX – Multiple Vulnerabilities
DirectAdmin Web Control Panel 1.483 – Multiple Vulnerabilities