Active eCommerce CMS version 6.3.0 suffers from an arbitrary file download vulnerability.

Active eCommerce CMS version 6.3.0 suffers from a cross site scripting vulnerability.

Backdoor.Win32.Bingle.b malware suffers from a hardcoded credential vulnerability.

Backdoor.Win32.Psychward.b malware suffers from a hardcoded credential vulnerability.

WooCommerce plugin BRW Booking Rental version 1.3.1 from Ovatheme suffers from a cross site scripting vulnerability.

Online Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell.

WordPress Sabai Discuss plugin version 1.4.13 suffers from a cross site scripting vulnerability.

WordPress Forym plugin version 1.5.7 suffers from a cross site scripting vulnerability.

Backdoor.Win32.Augudor.b malware suffers from a code execution vulnerability.

Veritas Backup Exec Agent supports multiple authentication schemes and SHA authentication is one of them. This authentication scheme is no longer used within Backup Exec versions, but had not yet…