>> TAG: #0day

WordPress CP Polls Plugin 1.0.8 – Multiple Vulnerabilities

Crouzet em4 soft 1.1.04 and M3 soft 3.1.2.0 – Insecure File Permissions

[Hebrew] Digital Whisper Security Magazine #70

Comodo Anti-Virus SHFolder.DLL – Local Privilege Elevation Exploit

WordPress More Fields <= 2.1 Plugin – CSRF Vulnerability

WordPress Ocim MP3 Plugin – SQL Injection Vulnerability

Zimbra 8.0.9 GA – CSRF Vulnerability

Proxmox VE 3/4 Insecure Hostname Checking Remote Root Exploit

Infor CRM 8.2.0.1136 – Multiple HTML Script Injection Vulnerabilities

Linux/ARM – Connect back to {ip:port} with /bin/sh – 95 bytes