PKP Open Journals System version 3.3 suffers from a cross site scripting vulnerability.

7-Zip version 21.07 suffers from a code execution vulnerability that allows for local privilege escalation.

ManageEngine ADSelfService Plus version 6.1 suffers from a user enumeration vulnerability.

Backdoor.Win32.Psychward.03.a malware suffers from a weak hardcoded password vulnerability.

Responsive Online Blog version 1.0 remote blind boolean-based SQL injection exploit that retrieves usernames and md5 hashes for all site users. Original discovery of the vulnerability is attributed to Eren…

WordPress Popup Maker plugin version 1.16.5 suffers from a persistent cross site scripting vulnerability.

Backdoor.Win32.GateHell.21 malware suffers from a man-in-the-middle vulnerability.

The Linux watch_queue filter suffers from an out of bounds write vulnerability.

WordPress Motopress Hotel Booking Lite plugin version 4.2.4 suffers from a remote SQL injection vulnerability.

Linux suffers from a vulnerability where FUSE allows use-after-free reads of write() buffers, allowing theft of (partial) /etc/shadow hashes.