>> TAG: #0day

PHPLive 4.4.8 – 4.5.4 – Password Recovery SQL Injection

jbFileManager – Directory Traversal

Ultrabenosaurus ChatBoard – CSRF (Send Message)

BookingWizz Booking System < 5.5 – Multiple Vulnerabilities

Dokeos 2.2.1 – Blind SQL Injection

AdobeUpdateService 3.6.0.248 – Unquoted Service Path Privilege Escalation

w2wiki – Multiple XSS Vulnerabilities

Joomla En Masse (com_enmasse) Component 5.1 – 6.4 – SQL Injection

Ultrabenosaurus ChatBoard – Stored XSS

Bomgar Remote Support Unauthenticated Code Execution (msf)