>> CATEGORY: exploit

OpenCms version 9.5.2 suffers from a cross site scripting vulnerability.

The Vulnerability Laboratory Research team discovered an application-side input validation web vulnerability in the official Prezi online service web-application.

An independent vulnerability laboratory researcher discovered an application-side cross site scripting vulnerability in the official Oxwell v1.8.1 Forums.

The Vulnerability Laboratory Core Research Team discovered multiple vulnerabilities in the official InstantCoder mobile iOS web-application.

An independent vulnerability laboratory researcher discovered an application-side web vulnerability in the official Ubiquiti Networks airCRM online service web-application.

Drupal version 8.0.x-dev suffers from a cross site scripting vulnerability on IE8 and older versions.

Thru Managed File Transfer Portal version 9.0.2 suffers from a remote SQL injection vulnerability.

Thru Managed File Transfer Portal version 9.0.2 suffers from a cross site scripting vulnerability.

Chamilo LMS suffers from a persistent cross site scripting vulnerability.