OpenAM 13.0 – LDAP Injection
>> CATEGORY: Security
OpenAM 13.0 – LDAP Injection
Ultimate POS 4.4 – ‘name’ Cross-Site Scripting (XSS)
PHPJabbers Simple CMS 5 – ‘name’ Persistent Cross-Site Scripting (XSS)
WordPress Plugin Popup Anything 2.0.3 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
WordPress Plugin Hotel Listing 3 – ‘Multiple’ Cross-Site Scripting (XSS)
Fuel CMS 1.4.1 – Remote Code Execution (3)
Eclipse Jetty 11.0.5 – Sensitive File Disclosure
Employee Record Management System 1.2 – ’empid’ SQL injection (Unauthenticated)
Dynojet Power Core 2.3.0 – Unquoted Service Path
Ericsson Network Location MPS GMPC21 – Privilege Escalation (Metasploit)