Microsoft Gaming Services version 2.52.13001.0 suffers from an unquoted service path vulnerability.
>> CATEGORY: exploit
Auto Spare Parts Management version 1.0 suffers from a remote SQL injection vulnerability.
Thinfinity VirtualUI version 2.5.41.0 suffers from an iframe injection vulnerability.
Thinfinity VirtualUI version 2.5.26.2 suffers from an information disclosure vulnerability.
WordPress WP User Frontend plugin version 3.5.25 suffers from an authenticated remote SQL injection vulnerability.
FileCloud version 21.2 suffers from a cross site request forgery vulnerability.
WordPress Perfect Survey plugin version 1.5.1 suffers from a remote SQL injection vulnerability.
Dbltek GoIP with firmware version GHSFVT-1.1-67-5 suffers from a local file inclusion vulnerability.
Microweber version 1.2.11 suffers from a remote shell upload vulnerability.
Cyclades Serial Console Server version 3.3.0 suffers from a local privilege escalation vulnerability.