>> CATEGORY: exploit

WiX Toolset installers suffer from a DLL hijacking vulnerability.

Java Platform SE 6 U24 HtmlConverter.exe version 6.0.240.50 suffers from a buffer overflow vulnerability.

GRR versions 3.0.0-RC1 and below suffer from a remote code execution vulnerability with privilege escalation through a file upload filter bypass.

CakePHP versions 3.2.0 and below suffer from a _method cross site request forgery protection bypass vulnerability.

WordPress Extredj plugin suffers from an open redirection vulnerability.

TCExam versions 12.2.5 and below suffer from a correct answer information disclosure vulnerability.

Amanda versions 3.3.1 and below amstar command injection local root exploit #2.

FreeBSD suffers from a bsnmpd information disclosure vulnerability.

Python version 3.5.1 installers suffer from a DLL hijacking vulnerability.

Advanced Electron Forum version 1.0.9 suffers from a cross site scripting vulnerability.