Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
KATHREIN UFSconnect 916 and 906 with firmware version 2.23 build 224 suffer from denial of service and unauthenticated access vulnerabilities.
Ubiquiti Networks UniFi Cloud Key with firmware versions 0.5.9 and 0.6.0 suffer from weak crypto, privilege escalation, and command injection vulnerabilities.
TYPO3 Formhandler version 2.4.0 suffers from a cross site scripting vulnerability.
Vehicle Workshop suffers from a remote SQL injection vulnerability.
Flash Slideshow Maker Professional suffers from content forgery, cross site scripting, and unvalidated redirection vulnerabilities.
FortiOS versions 5.6.0 and below suffer from multiple cross site scripting vulnerabilities.
Jenkins versions prior to 1.650 suffer from a java deserialization vulnerability.
WordPress Logosware Suite Uploader plugin version 1.1.6 suffers from a remote file upload vulnerability.
DiskBoss Enterprise version 8.2.14 suffers from a buffer overflow vulnerability.