KODExplorer web file manager suffers from a cross site request forgery vulnerability.
>> CATEGORY: exploit
WordPress Simple Ads Manager plugin version 2.9.4.116 suffers from a remote SQL injection vulnerability.
Netduma R1 router versions 1.03.4 and 1.03.5 suffer from a cross site request forgery vulnerability.
FTPShell Client version 5.24 suffers from a buffer overflow vulnerability.
Installation of DeleGate version 9.9.13 sets some binaries setuid root and at least one of these binaries can be used to escalate the privileges of a local user. The binary…
KODExplorer web file manager suffers from a cross site scripting vulnerability.
InterPhoto version 2.3.0 Persians suffers from a database disclosure vulnerability.
PHP Melody CMS version 2.3 suffers from a remote SQL injection vulnerability.
AVG’s Web Tune extension maliciously works to bypass the Chrome malware checks and leaves broken JavaScript APIs available. The attached exploit steals cookies from avg.com.
RW::Download version 4.0.8 suffers from remote and local file inclusion and remote SQL injection vulnerabilities.