>> CATEGORY: Security

Fuel CMS 1.5.0 – Cross-Site Request Forgery (CSRF)

WordPress Plugin Videos sync PDF 1.7.4 – Stored Cross Site Scripting (XSS)

ManageEngine ADSelfService Plus 6.1 – User Enumeration

PTPublisher v2.3.4 – Unquoted Service Path

Microsoft Exchange Active Directory Topology 15.0.847.40 – ‘Service MSExchangeADTopology’ Unquoted Service Path

EaseUS Data Recovery – ‘ensserver.exe’ Unquoted Service Path

Microsoft Exchange Mailbox Assistants 15.0.847.40 – ‘Service MSExchangeMailboxAssistants’ Unquoted Service Path

WordPress Plugin Motopress Hotel Booking Lite 4.2.4 – SQL Injection

Zyxel NWA-1100-NH – Command Injection

Easy Appointments 1.4.2 – Information Disclosure