WordPress Email Subscribers and Newsletters plugin version 3.4.7 suffers from an information disclosure vulnerability.
>> CATEGORY: exploit
Professional Local Directory Script version 1.0 suffers from a remote SQL injection vulnerability.
RAVPower version 2.000.056 suffers from a remote root code execution vulnerability.
Blizzard’s agent rpc authentication mechanism is vulnerable to DNS rebinding attacks.
Endonesia version 8.7 suffers from a remote SQL injection vulnerability.
The Academic Microsoft API query filter suffers from cross site scripting vulnerabilities.
NEC Univerge SV9100/SV8100 WebPro version 10.0 suffers from a remote configuration download vulnerability. The gzipped telephone system configuration file ‘config.gz’ or ‘config.pcpx’ that contains the unencrypted data file ‘conf.pcpn’, can…
The vulnerability laboratory core research team discovered a remote sql-injection web vulnerability in the CentOS Web Pa…
…
Simple ASC CMS version 1.2 suffers from a database disclosure vulnerability.