Proxmox VE versions 3 and 4 suffers from privilege escalation, code execution, and cross site scripting vulnerabilities.
>> CATEGORY: exploit
Centreon versions 2.5.3 and below suffer from a remote code execution vulnerability.
Zimbra versions 8.0.9 GA and below suffer from a cross site request forgery vulnerability.
GIMP for Windows suffers from a dll hijacking vulnerability.
JSN PowerAdmin Joomla! extension version 2.3.0 suffers from cross site request forgery, code execution, and cross site scripting vulnerabilities.
WordPress User Submitted Posts plugin version 20151113 suffers from a persistent cross site scripting vulnerability.
Open Web Analytics version 1.5.7 suffers from a cross site scripting vulnerability.
The Vulnerability Laboratory Core Research Team discovered a Unencrypted User`s DM & User Information Vulnerability in the official PayPal Inc Mobile API for Android.
WordPress WP Advanced Importer plugin version 2.1.1 suffers from a cross site scripting vulnerability.
WordPress Extra User Details plugin version 0.4.2 suffers from a privilege escalation vulnerability.