WordPress Plugin Mimetic Books 0.2.13 – ‘Default Publisher ID field’ Stored Cross-Site Scripting (XSS)
>> CATEGORY: Security
Dolibarr ERP/CRM 10.0.6 – Login Brute Force
PEEL Shopping 9.3.0 – ‘id’ Time-based SQL Injection
Seagate BlackArmor NAS sg2000-2000.1331 – Command Injection
Argus Surveillance DVR 4.0 – Weak Password Encryption
ForgeRock Access Manager/OpenAM 14.6.3 – Remote Code Execution (RCE) (Unauthenticated)
Aruba Instant 8.7.1.0 – Arbitrary File Modification
WordPress Plugin Popular Posts 5.3.2 – Remote Code Execution (RCE) (Authenticated)
osCommerce 2.3.4.1 – Remote Code Execution (2)
Webmin 1.973 – Cross-Site Request Forgery (CSRF)