dnsrecon 0.10.0 – CSV Injection
>> AUTHOR: deepcore
dnsrecon 0.10.0 – CSV Injection
WordPress Plugin Autoptimize 2.7.6 – Authenticated Arbitrary File Upload (Metasploit)
WordPress Plugin wpDiscuz 7.0.4 – Unauthenticated Arbitrary File Upload (Metasploit)
Advanced Webhost Billing System version 3.7.0 suffers from a cross site request forgery vulnerability.
IObit Uninstaller version 10 Pro suffers from an unquoted service path vulnerability.
dirsearch version 0.4.1 suffers from a CSV injection vulnerability.
IPeakCMS version 3.5 suffers from a blind remote SQL injection vulnerability.
Expense Tracker version 1.0 suffers from a persistent cross site scripting vulnerability.
WordPress WP24 Domain Check plugin version 1.6.2 suffers from a persistent cross site scripting vulnerability.
Responsive E-Learning System version 1.0 suffers from a remote shell upload vulnerability.