WordPress cart66 cart66-lite plugin version 1.0 suffers from a database disclosure vulnerability.
>> CATEGORY: exploit
Fleetco Fleet Maintenance Management version 1.2 suffers from a code execution vulnerability.
Rockwell Automation Allen-Bradley PowerMonitor 1000 suffers from a cross site scripting vulnerability.
PaloAlto Networks Expedition Migration Tool version 1.0.106 suffers from an information disclosure vulnerability.
Apache Superset version 0.23 suffers from a remote code execution vulnerability.
PHP Server Monitor version 3.3.1 suffers from a cross site request forgery vulnerability.
Joomla! JE Photo Gallery component version 1.1 suffers from a remote SQL injection vulnerability.
FreshRSS version 1.11.1 suffers from multiple cross site scripting vulnerabilities.
CubeCart version 6.2.2 suffers from a cross site scripting vulnerability.
NEC Univerge Sv9100 WebPro version 6.00.00 suffers from predictable session identifiers and cleartext password vulnerabilities.