Dolibarr ERP/CRM 10.0.6 – Login Brute Force
>> TAG: #0day
Dolibarr ERP/CRM 10.0.6 – Login Brute Force
PEEL Shopping 9.3.0 – ‘id’ Time-based SQL Injection
Seagate BlackArmor NAS sg2000-2000.1331 – Command Injection
Argus Surveillance DVR 4.0 – Weak Password Encryption
ForgeRock Access Manager/OpenAM 14.6.3 – Remote Code Execution (RCE) (Unauthenticated)
Aruba Instant 8.7.1.0 – Arbitrary File Modification
WordPress Plugin Popular Posts 5.3.2 – Remote Code Execution (RCE) (Authenticated)
osCommerce 2.3.4.1 – Remote Code Execution (2)
Webmin 1.973 – Cross-Site Request Forgery (CSRF)
WordPress Plugin Current Book 1.0.1 – ‘Book Title and Author field’ Stored Cross-Site Scripting (XSS)