WD My Cloud Mirror version 2.11.153 suffers from remote command execution and authentication bypass vulnerabilities.
>> CATEGORY: exploit
MyBB versions 1.8.3 and below alongside PHP versions prior to 5.6.30 suffer from a GMP deserialization type confusion vulnerability.
Microsoft power point allows users to insert objects of arbitrary file types. At presentation time these objects can be activated by mouse movement or clicking.
Oracle E-Business Suite versions 12.1.3, 12.2.3, 12.2.4, 12.2.5, and 12.2.6 suffer from an unconstrained file download vulnerability.
PageKit version 1.0.10 suffers from a password reset vulnerability.
Python version 2.x suffers from a buffer overflow in the DecodeAdpcmImaQT function in the ctypes module.
Oracle PeopleSoft HCM version 9.2 suffers from a cross site scripting vulnerability.
Microsoft Remote Desktop Client for Mac version 8.0.36 suffers from a remote code execution vulnerability.
Oracle OpenJDK Runtime Environment build 1.8.0_112-b15 suffers from a java serialization denial of service vulnerability.
CUPS suffers from an incorrect whitelist that permits DNS rebinding attacks.