Expense Tracker version 1.0 suffers from a persistent cross site scripting vulnerability.

WordPress WP24 Domain Check plugin version 1.6.2 suffers from a persistent cross site scripting vulnerability.

Responsive E-Learning System version 1.0 suffers from a remote shell upload vulnerability.

Responsive E-Learning System version 1.0 suffers from a persistent cross site scripting vulnerability.

WordPress Litespeed Cache plugin version 3.6 suffers from a cross site scripting vulnerability.

Newgen Correspondence Management System (corms) eGov version 12.0 suffers from an insecure direct object reference vulnerability.

WinAVR version 20100110 suffers from an insecure folder permissions vulnerability.

This Metasploit module exploit BITS behavior which tries to connect to the local Windows Remote Management server (WinRM) every times it starts. The module launches a fake WinRM server which…

IPS Community Suite versions 4.5.4 and below suffer from a remote SQL injection vulnerability in the Downloads REST API.