WordPress WP Mobile Detector versions 3.5 and below suffer from a remote shell upload vulnerability.
>> CATEGORY: exploit
WordPress Levo-Slideshow plugin version 2.3 suffers from a remote shell upload vulnerability.
Saudi Softech version 5.0.1 suffers from cross site scripting and remote SQL injection vulnerabilities.
ManageEngine SelfService Plus build 5312 (Mar 2016) and prior suffer from a cross site scripting vulnerability.
Joomla JobGrokApp component version 3.1-1.2.55 suffers from a remote SQL injection vulnerability.
Dream Gallery version 1.0 suffers from a cross site request forgery vulnerability.
Sun Secure Global Desktop and Oracle Global Desktop version 4.61.915 remote shellshock code execution exploit.
WordPress Double Opt-In for Download plugin version 2.0.9 suffers from a remote SQL injection vulnerability.
Valve Steam version 3.42.16.13 suffers from a local privilege escalation vulnerability.
Adobe Reader suffers from a CoolType unlimited out-of-bounds stack manipulation vulnerability via the BLEND operator.