Yazilimi Jettweb version 3 suffers from a cross site scripting vulnerability.
>> CATEGORY: exploit
Yazilimi Jettweb version 3 suffers from a cross site scripting vulnerability.
Active Matrimonial CMS version 3.5 appears to leave a default administrative account in place post installation.
The Citrix Linux client emits its session credentials when starting a Citrix session. These credentials end up being recorded in the client’s system log. Citrix does not consider this to…
XNU VM suffers from a copy-on-write bypass vulnerability due to incorrect shadow creation logic used during unaligned vm_map_copy operations.
A XNU race condition in vm_map_copy_overwrite_unaligned allows writing to read-only mappings.
BootCommerce version 3.2.1 suffers from a remote SQL injection vulnerability.
BootCommerce version 3.2.1 suffers from a cross site scripting vulnerability.
LISTSERV version 17 suffers from a cross site scripting vulnerability.
LISTSERV version 17 suffers from an insecure direct object reference vulnerability that allows illicit access to a target’s profile.
Laravel versions 1.0 to 9.47.0 suffer from database disclosure and information leakage vulnerabilities.