GetSimple CMS Multi User plugin version 1.8.2 suffers from multiple cross site request forgery vulnerabilities.
>> AUTHOR: deepcore
This Metasploit module exploits a logic bug within the template rendering code in vBulletin 5.x. The module uses the vBulletin template rendering functionality to render the widget_tabbedcontainer_tab_panel template while also…
Fuel CMS version 1.4.7 suffers from an authenticated remote SQL injection vulnerability.
SugarCRM versions prior to 10.1.10 suffer from multiple cross site scripting vulnerabilities.
SugarCRM versions prior to 10.1.10 suffer from a remote SQL injection vulnerability.
Avian JVM version 1.2.0 suffers from a silent return issue in the vm::arrayCopy method defined in classpath-common.h, where multiple boundary checks are performed to prevent out-of-bounds memory read/write. One of…
Avian JVM version 1.2.0 suffers from multiple vm::arrayCopy() integer overflow vulnerabilities.
Artica Proxy 4.3.0 – Authentication Bypass
GetSimple CMS Plugin Multi User 1.8.2 – Cross-Site Request Forgery (Add Admin)
flatCore CMS versions 1.5.5 and below suffer from cross site scripting and arbitrary file upload vulnerabilities.