>> CATEGORY: exploit

Proxifier versions 2.18 and below ships with a KLoader binary which it installs suid root the first time Proxifier is run. This binary serves a single purpose which is to…

Brother MFC-J6520DW suffers from a password changing authentication bypass vulnerability.

Horde Groupware Webmail versions 3, 4, and 5 suffer from multiple remote code execution vulnerabilities.

Moxa MXview version 2.8 suffers from a remote private key disclosure vulnerability.

Jobscript4Web version 4.5 suffers from a remote SQL injection vulnerability that can be leveraged for authentication bypass.

WordPress Tribulant Slideshow Gallery plugin versions 1.6.4 and below suffer from multiple cross site scripting vulnerabilities.

Moxa MXView version 2.8 suffers from a denial of service vulnerability.

Code Igniter version 3.1.3 suffers from an HTTP response header injection vulnerability.

Moxa MX-AOPC UA server version 1.5 suffers from an XML external entity injection vulnerability.

WebKit suffers from a use-after-free vulnerability in HTMLInputElement.