ePowerSvc version 6.0.3008.0 suffers from an unquoted service path vulnerability.

D-Link DWR-710 is missing server-side controls to ensure that null passwords are not set.

WordPress ReDi Restaurant Reservation plugin version 21.0307 suffers from a persistent cross site scripting vulnerability.

Backdoor.Win32.Spirit.12.b malware suffers from an insecure permissions vulnerability.

Backdoor.Win32.Upload.a malware suffers from a denial of service vulnerability.

iDailyDiary version 4.30 suffers from a denial of service vulnerability.

Shopizer versions 2.16.0 and below suffer from multiple cross site scripting vulnerabilities.

PHP version 8.1.0-dev backdoor unauthenticated remote command injection exploit.

Schlix CMS version 2.2.6-6 suffers from an arbitrary file upload and a directory traversal that together can lead to remote command execution.

Backdoor.Win32.Spion4 malware suffers from insecure transit issues.