>> CATEGORY: exploit

Process Hacker suffers from a DLL hijacking vulnerability.

The login page of the Citrix Netscaler Gateway web front-end is vulnerable to a DOM-based cross site scripting (XSS) vulnerability due to improper sanitization of the content of the “NSC_TMAC”…

PHP Real Estate Script version 4.9.0 suffers from a remote SQL injection vulnerability.

Joomla Simple Calendar component version 0.7.6b suffers from a remote SQL injection vulnerability.

Microsoft Internet Explorer divide by zero proof of concept denial of service exploit.

PHP CRUD version 1.4 comes installed with weakly protected backdoor accounts.

Teampass version 2.1.25 suffers from an arbitrary file download.

Teampass version 2.1.25 suffers from an unauthenticated access vulnerability.

Open-Xchange OX AppSuite versions 7.8.0 and below suffer from cross site scripting, open redirection, and argument injection vulnerabilities.

dotCMS versions prior to 3.5 and 3.3.2 suffers from an email header injection vulnerability.