WordPress Add Mime Types plugin version 2.2.1 suffers from a cross site request forgery vulnerability.
CentOS Control Web Panel (CWP) version 0.9.8.848 suffers from a user enumeration vulnerability.
CentOS Control Web Panel (CWP) version 0.9.8.851 suffers from an arbitrary database dropping vulnerability.
CentOS Control Web Panel (CWP) version 0.9.8.851 allows an attacker to change arbitrary passwords.
Webmin version 1.920 remote root exploit.
This Metasploit module generates an ODT file with a dom loaded event that, when triggered, will execute arbitrary python code and the metasploit payload.
http://foodcontact.dss.go.th/index.html notified by UnkCrew
Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN – Arbitrary File Disclosure (metasploit)
RAR Password Recovery version 1.80 suffers from a user name and registration code denial of service vulnerability.
Kimai version 2 suffers from a persistent cross site scripting vulnerability.