WordPress XCloner plugin versions 3.1.5 and below suffer from remote command execution and denial of service vulnerabilities.
>> CATEGORY: exploit
The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a…
PHP Classifieds Rental Script version 1.0 suffers from a cross site scripting vulnerability.
NETGEAR ADSL router WNR612v3 with firmware version 1.0.0.9 suffers from a file disclosure vulnerability.
D-Link ADSL router DSL-2750U with firmware version IN_1.08 suffers from a file disclosure vulnerability.
WordPress Calendar plugin version 1.3.7 suffers from a cross site scripting vulnerability.
OpenGB version 1.2.3 suffers from a cross site scripting vulnerability.
D-Link ADSL router DSL-2750E with firmware version SEA_1.07 suffers from a file disclosure vulnerability.
NETGEAR ADSL router JNR2010 with firmware version 1.0.0.20 suffers from a file disclosure vulnerability.
WordPress 404 to 301 plugin version 2.2.8 suffers from a persistent cross site scripting vulnerability.