NUUO versions 3.0.8 and below suffer from a file disclosure vulnerability.
>> CATEGORY: exploit
NUUO versions 3.0.8 and below suffer from a file disclosure vulnerability.
NUUO versions 3.0.8 and below add administrator cross site request forgery exploit.
NUUO NVRmini, NVRmini2, Crystal and NVRSolo suffer from an unauthenticated command injection vulnerability. Due to an undocumented and hidden debugging script, an attacker can inject and execute arbitrary code as…
WordPress Welcome Announcement plugin version 1.0.5 suffers from a cross site scripting vulnerability.
WordPress Selected Text Sharer plugin version 1.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
WordPress Landing Pages plugin version 2.2.4 suffers from a cross site scripting vulnerability.
WordPress Activity Log plugin version 2.3.2 suffers from a cross site scripting vulnerability in the search function.
PHP Power Browse version 1.2 suffers from a path traversal vulnerability.
ntop versions 2.3 through 2.5 suffer from cross site request forgery and multiple command execution vulnerabilities.