Antidote versions 9.5.1 and below suffer from an update related code execution vulnerability.
>> CATEGORY: exploit
MyBB Visual Editor versions 1.8.18 and below suffer from a cross site scripting vulnerability.
On vulnerable versions of Windows the alpc endpoint method SchRpcSetSecurity implemented by the task scheduler service can be used to write arbitrary DACLs to .job files located in c:windowstasks because…
NICO-FTP version 3.0.1.19 SEH buffer overflow exploit.
There is an out-of-bounds read in FEC processing in WebRTC. If a very short RTP packet is received, FEC will assume the packet is longer and process data outside of…
There is a use-after-free vulnerability in VP9 processing in WebRTC.
Roundcube rcfilters plugin version 2.1.6 suffers from a cross site scripting vulnerability.
WordPress Wechat Broadcast plugin version 1.2.0 suffers from a local file inclusion vulnerability.
WordPress Localize My Post plugin version 1.0 suffers from a local file inclusion vulnerability.
LimeSurvey version 3.14.7 suffers from cross site scripting and html injection vulnerabilities.