WordPress Google Analytics Dashboard plugin version 2.1.1 suffers from a cross site scripting vulnerability.
>> CATEGORY: exploit
WordPress Popup by Supsystic plugin 1.7.6 suffers from a cross site request forgery vulnerability.
WordPress VaultPress plugin version 1.8.4 suffers from a remote code execution via man-in-the-middle attack vulnerability.
WordPress User Login Log plugin version 2.2.1 suffers from a cross site scripting vulnerability.
WordPress Contact Form Manager plugin suffers from cross site request forgery and cross site scripting vulnerabilities.
WordPress Contact Form plugin version 4.0.0 suffers from a cross site scripting vulnerability.
X.org suffers from privilege escalation, weak entropy, and use-after-free vulnerabilities.
WordPress WP-SpamFree Anti-Spam plugin version 2.1.1.4 suffers from a cross site scripting vulnerability.
JexBoss is an exploitation tool that demonstrates deserialization remote code execution attacks against multiple applications and platforms.
WordPress Admin Custom Login plugin version 2.4.5.2 suffers from a persistent cross site scripting vulnerability.