Chamilo LMS version 1.11.14 suffers from a persistent cross site scripting vulnerability.

WordPress Download Monitor WordPress plugin versions prior to 4.4.5 suffer from a remote SQL injection vulnerability.

Backdoor.Win32.Wollf.m malware suffers from a weak hardcoded password vulnerability.

WordPress Domain Check plugin version 1.0.16 suffers from a cross site scripting vulnerability.

PHP Unit version 4.8.28 suffers from a remote code execution vulnerability. Related CVE number: CVE-2017-9841. Authored by souzo

WordPress Contact Form Check Tester plugin version 1.0.2 suffers from broken access control and cross site scripting vulnerabilities.

Mozilla Firefox version 67 Array.pop JIT type confusion exploit with sandbox escape.

PHP Restaurants version 1.0 suffers from a remote SQL injection vulnerability.

Backdoor.Win32.Zxman malware suffers from a code execution vulnerability.

Moodle version 3.11.4 suffers from a remote SQL injection vulnerability.