>> CATEGORY: Security

BlogEngine 3.3 – ‘syndication.axd’ XML External Entity Injection

SimplePHPGal 0.7 – Remote File Inclusion

NEC Electra Elite IPK II WebPro 01.03.01 – Session Enumeration

BoltWire 6.03 – Local File Inclusion

osTicket 1.14.1 – Persistent Authenticated Cross-Site Scripting

Outline Service 1.3.3 – ‘Outline Service ‘ Unquoted Service Path

Frigate 3.36 – Buffer Overflow (SEH)

addressbook 9.0.0.1 – ‘id’ SQL Injection

ChemInv 1.0 – Authenticated Persistent Cross-Site Scripting

php-fusion 9.03.50 – Persistent Cross-Site Scripting