>> CATEGORY: exploit

Wireshark versions 2.4.0 through 2.4.2 and 2.2.0 through 2.2.10 suffer from a crash issue in the CIP Safety dissector.

LaCie 5big Network version 2.2.8 suffers from a remote command injection vulnerability.

Amazon Audible suffers from a dll hijacking vulnerability.

Arq Backup versions 5.9.6 and below suffer from a local root privilege escalation vulnerability.

Arq Backup versions 5.9.7 and below suffer from a local root privilege escalation vulnerability.

WordPress 3rd-Party Inject Results plugin version 0.2 suffers from a persistent cross site scripting vulnerability.

WordPress Super Simple Custom CSS plugin version 1.2 suffers from a persistent cross site scripting vulnerability.

WordPress Z-URL Preview plugin version 1.6.1 suffers from a persistent cross site scripting vulnerability.

WordPress WP Mailster plugin version 1.5.4.0 suffers from a persistent cross site scripting vulnerability.

Claymore’s Dual ETH + DCR/SC/LBC/PASC GPU Miner versions 10.1 and below suffer from a stack buffer overflow vulnerability.