Joomla JB Bus extension version 2.3.0 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
Joomla JB Tour Booking extension 2.2.2 suffers from a remote SQL injection vulnerability.
eBPF suffers from an arbitrary read and write vulnerability via incorrect range tracking.
This Metasploit module creates and enables a custom UDF (user defined function) on the target host via the SELECT … into DUMPFILE method of binary injection. On default Microsoft Windows…
Netis-WF2419 version 2.2.36123 suffers from an html injection issue.
WordPress Grifus theme version 4.0.1 suffers from a cross site scripting vulnerability.
WordPress Feed-Statistics plugin versions 4.1 and below suffer from an open redirection vulnerability.
Palo Alto Networks PAN-OS versions before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.
This advisory describes a buffer overflow found in Huawei P8 Lite ALE-21 HI621sft, operating system versions EMUI 3.1 – wkupccpu debugfs driver.
WordPress Top-10 plugin versions 2.4.2 and below suffer from a remote SQL injection vulnerability.