Various Daily Mail sites suffered from unvalidated redirect and cross site scripting vulnerabilities.
>> CATEGORY: exploit
TeleGraph.co.uk suffered from a cross site scripting vulnerability.
Samsung Galaxy S6 LibQjpeg memory corruption proof of concept exploit.
Samsung LibQjpeg suffers from a memory corruption vulnerability in the DCMProvider service when decoding an image.
Samsung Galaxy S6 Android.media.process face recognition memory corruption proof of concept exploit.
The Linksys X2000 suffers from a remote, unauthenticated command execution vulnerability that scores root privileges.
SQL Buddy version 1.3.3 suffers from a cross site request forgery vulnerability.
SQL Buddy version 1.3.3 suffers from a cross site scripting vulnerability.
Chyrp CMS version 2.5.2 suffers from a cross site scripting vulnerability.
Redis has eloquently explained how it can be used for remote command execution if not securely configured to mitigate arbitrary access.