WordPress Service Finder Booking plugin versions prior to 3.2 suffer from a file disclosure vulnerability.
>> CATEGORY: exploit
DiskBoss Enterprise version 8.8.16 suffers from a buffer overflow vulnerability.
WordPress Download Manager plugin version 2.9.60 suffers from a cross site request forgery vulnerability.
Sangoma NetBorder / Vega Session Controller versions prior to 2.3.12-80-GA allows remote unauthenticated attackers to execute arbitrary commands via the web interface.
Parity versions 1.6.10 (stable) and below suffer from a same origin policy bypass vulnerability via a webproxy token reuse issue.
Many TP-Link products suffer from multiple authenticated remote command injection vulnerabilities.
Jungo Windriver version 12.5.1 suffers from a privilege escalation vulnerability.
Joomla! Easydiscuss component versions prior to 4.0.21 suffer from a cross site scripting vulnerability.
WordPress MQ ReLinks plugin version 1.8 suffers from cross site scripting and open redirection vulnerabilities.
WordPress Dbox 3D Slide Lite plugin versions 1.2.2 and below suffer from multiple remote SQL injection vulnerabilities.