>> CATEGORY: Security

Apache James Server 2.3.2 – Remote Command Execution (RCE) (Authenticated) (2)

WordPress Plugin Wappointment 2.2.4 – Stored Cross-Site Scripting (XSS)

Ether_MP3_CD_Burner 1.3.8 – Buffer Overflow (SEH)

Library System 1.0 – ‘student_id’ SQL injection (Authenticated)

Cisco small business RV130W 1.0.3.44 – Inject Counterfeit Routers

Cyberfox Web Browser 52.9.1 – Denial-of-Service (PoC)

SmarterTools SmarterTrack 7922 – ‘Multiple’ Information Disclosure

Pharmacy Point of Sale System 1.0 – SQLi Authentication BYpass

Budget and Expense Tracker System 1.0 – Arbitrary File Upload

Gurock Testrail 7.2.0.3014 – ‘files.md5’ Improper Access Control