RealtyScript version 4.0.2 suffers from multiple time-based remote SQL injection vulnerabilities.
>> CATEGORY: exploit
An independent vulnerability laboratory researcher discovered a buffer overflow vulnerability in the official Free WMA MP3 Converter v1.8 software.
WordPress Events Made Easy plugin version 1.5.49 suffers from cross site request forgery and cross site scripting vulnerabilities.
If IExternalizable.writeExternal is overridden with a value that is not a function, Flash assumes it is a function even though it is not one. This leads to execution of a…
Kaboozu CMS suffers from a remote shell upload vulnerability.
Nibbleblog contains a flaw that allows an authenticated remote attacker to execute arbitrary PHP code. This Metasploit module was tested on version 4.0.3.
MC Inventory Manager suffers from a stored cross site scripting vulnerability.
MC Inventory Manager suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Typo3 versions 4.2 and 4.5 suffer from information disclosure vulnerabilities.
Recompiling the regular expression pattern during a replace in JScript version 5.7 (MSIE 8) can cause the code to reuse a freed string, but only if the string is freed…