WordPress Dharma Booking plugin versions 2.28.3 and below suffer from local and remote file inclusion vulnerabilities.
>> CATEGORY: exploit
WordPress Brandfolder plugin versions 3.0 and below suffer from local and remote file inclusion vulnerabilities.
Plain text hardcoded passwords have been discovered in /bin/busybox and /bin/dropbear for Zyxel MAX3XX series Wimax CPEs.
CCTV-DVR remote code execution exploit that affects over 70 different vendors.
An independent vulnerability laboratory researcher discovered multiple sql injection web vulnerabilities in the Hi Technology & Services Content Management System.
Achievo version 1.4.5 suffers from a cross site scripting vulnerability.
WordPress HB Audio Gallery Lite plugin version 1.0.0 suffers from an arbitrary file download vulnerability.
Adobe Flash suffers from a wild write at 0x453b0cf0 in color conversion that causes a crash.
Adobe Flash suffers from an information leak that may render non-deterministic content that apparently contains pointers.
Adobe Flash suffers from an out-of-bounds read in AAC audio handling.