MyBB Threads to Link Plugin 1.3 – Cross-Site Scripting
>> TAG: #0day
MyBB Threads to Link Plugin 1.3 – Cross-Site Scripting
GitList 0.6 – Unauthenticated Remote Code Execution
SickRage < v2018.03.09 – Clear-Text Credentials HTTP Response
Jfrog Artifactory < 4.16 – Unauthenticated Arbitrary File Upload / Remote Command Execution
Frog CMS 0.9.5 – Persistent Cross-Site Scripting
HRSALE The Ultimate HRM 1.0.2 – Authenticated Cross-Site Scripting
Chrome V8 JIT – ‘AwaitedPromise’ Update Bug
HRSALE The Ultimate HRM v1.0.2 – Local File Inclusion
HRSALE The Ultimate HRM v1.0.2 – ‘award_id’ SQL Injection
HRSALE The Ultimate HRM v1.0.2 – CSV Injection