Rapid7 Nexpose version 6.4.65 suffers from a cross site request forgery vulnerability.
>> CATEGORY: exploit
Joomla! JS Support Ticket component version 1.1.0 suffers from a cross site request forgery vulnerability.
Vastal I-Tech Facebook Clone version 2.9.9 suffers from a remote SQL injection vulnerability.
Joomla! Jtag Members Directory component version 5.3.7 suffers from an arbitrary file download vulnerability.
The Oracle WebLogic WLS WSAT component is vulnerable to an XML deserialization remote code execution vulnerability. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0.
…
…
AsusWRT Router versions prior to 3.0.0.4.380.7743 suffer from an unauthenticated LAN remote code execution vulnerability.
OTRS versions 5.0.x and 6.0.x suffer from a remote command execution vulnerability.
LiveCRM SaaS Cloud version 1.0 suffers from a remote SQL injection vulnerability.