Wireshark suffers from a heap-based out-of-bounds read in AirPDcapDecryptWPABroadcastKey.
>> CATEGORY: exploit
Huawei Mobile Broadband HL Service versions 22.001.25.00.03 and below are vulnerable to a DLL side loading attack allowing normal unprivileged users to gain full SYSTEM access.
Skype appears to possibly be susceptible to a content spoofing vulnerability.
Joomla Event Manager component version 2.x suffers from a cross site scripting vulnerability.
WordPress BulletProof Security version 53.3 suffers from a cross site scripting vulnerability.
The vulnerability laboratory research team discovered an application-side vulnerability in the official Bugcrowd online service web-application.
An independent vulnerability laboratory researcher discovered a cross site scripting web vulnerability in the official Trend Micro Direct Pass web-application.
The vulnerability laboratory core research team discovered multiple sql-injection vulnerabilities in the official Stanford University online service web-application.
IPFire versions prior to 2.19 Update Core 101 suffer from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.
Threaded USENET news reader version 3.6-23 suffers from a stack buffer overflow vulnerability.