Sentrifugo version 3.2 suffers from a persistent cross site scripting vulnerability.
>> CATEGORY: exploit
DomainMod versions 4.13 and below suffer from a cross site scripting vulnerability.
An FTP service runs on the Zyxel wireless access point that contains the configuration file for the WiFi network. This FTP server can be accessed with hard-coded credentials that are…
Zyxel USG/UAG/ATP/VPN/NXC series suffer from an issue where a DNS request can be made by an unauthenticated attacker to either spam a DNS service of a third party with requests…
Outlook Password Recovery version 2.10 suffers from a denial of service vulnerability.
Joomla version 1.0.15 with Easy GuestBook component version 1.0 suffers from a remote SQL injection vulnerability.
Joomla version 2.5.28 with JomEstate component version 4.1 suffers from a remote SQL injection vulnerability.
Cisco UCS Director, Cisco Integrated Management Controller Supervisor and Cisco UCS Director Express for Big Data suffer from default password, authentication bypass, and command injection vulnerabilities.
Webkit JSC JIT suffers from an uninitialized variable access vulnerability in ArgumentsEliminationPhase::transform.