TrueOnline is a Thai ISP that distributes customized versions of ZyXEL and Billion routers – customized with vulnerabilities that is. The routers contain several default administrative accounts and command injections…
>> CATEGORY: exploit
WordPress Direct Download for WooCommerce versions up to 1.15 suffer from a local file inclusion vulnerability.
dirList version 0.3.0 suffers from file upload bypass and remote command execution vulnerabilities.
Atlassian Jira version 7.1.7 suffers from a cross site scripting vulnerability.
BoZon version 2.4 suffers from a pre-authentication remote command execution vulnerability.
Salesforce event registration functionality allows for malicious script code to be inserted.
Hassium CMS version 0.10 suffers from a cross site scripting vulnerability.
Huawei Flybox B660 suffers from a cross site request forgery vulnerability.
WinaXe Plus version 8.7 suffers from a buffer overflow vulnerability.
Image Sharing Script version 4.13 suffers from cross site scripting and remote SQL injection vulnerabilities.