WordPress Plugin TranslatePress 2.0.8 – Stored Cross-Site Scripting (XSS) (Authenticated)
>> AUTHOR: deepcore
WordPress Plugin Contact Form 1.7.14 – Reflected Cross-Site Scripting (XSS)
Simple Attendance System version 1.0 authentication bypass exploit that adds an administrator.
Cyberfox Web Browser 52.9.1 – Denial-of-Service (PoC)
Cisco small business RV130W 1.0.3.44 – Inject Counterfeit Routers
Library System 1.0 – ‘student_id’ SQL injection (Authenticated)
Ether_MP3_CD_Burner 1.3.8 – Buffer Overflow (SEH)
WordPress Plugin Wappointment 2.2.4 – Stored Cross-Site Scripting (XSS)
https://www.ombudsman.go.th/krd.html notified by 0x1998
SmarterTools SmarterTrack 7922 suffers from an information disclosure vulnerability.