All Vulnerabilities

PREVIOUS
PREVIOUS
WordPress W3 Total Cache Plugin Cross Site Scripting Vulnerability
 Severity:    
 Date Published:  12 Oct 2016
A cross-site scripting (XSS) vulnerability exists in W3 Total Cache plugin, used in WordPress and other products, allow remote attackers to execute same-origin JavaScript functions via crafted parameter.
Read more
WordPress Piwik Plugin Persistent Cross Site Scripting Vulnerability
 Severity:    
 Date Published:  12 Oct 2016
A cross-site scripting (XSS) vulnerability exists in Piwik plugin, used in WordPress and other products, allow remote attackers to execute same-origin JavaScript functions via crafted parameter.
Read more
WordPress MailPoet Newsletter Plugin SQL Injection Vulnerability
 Severity:    
 Date Published:  12 Oct 2016
SQL injection vulnerability in WordPress MailPoet Newsletter Plugin allows attackers to execute arbitrary SQL commands via unspecified vectors.
Read more
WordPress Link Library Plugin Cross-Site Scripting Vulnerability
 Severity:    
 Date Published:  12 Oct 2016
A cross-site scripting (XSS) vulnerability exists in Link Library plugin, used in WordPress, allow remote attackers to execute same-origin JavaScript functions via crafted parameter.
Read more
PhpMyAdmin Multiple Cross Site Scripting Vulnerabilities (CVE-2016-6608)
 Severity:    
 Date Published:  12 Oct 2016
A cross-site scripting (XSS) vulnerability exists in PhpMyAdmin, allows remote attackers to execute same-origin JavaScript functions via crafted parameter.
Read more
PhpMyAdmin Multiple Cross Site Scripting Vulnerabilities (CVE-2016-5733)
 Severity:    
 Date Published:  12 Oct 2016
A cross-site scripting (XSS) vulnerability exists in PhpMyAdmin, allow remote attackers to execute same-origin JavaScript functions via crafted parameter.
Read more
Joomla Component Huge-IT Video Gallery SQL Injection Vulnerability (CVE-2016-1000...
 Severity:    
 Date Published:  12 Oct 2016
SQL injection vulnerability in Joomla! allows attackers to execute arbitrary SQL commands via unspecified vectors.
Read more
VMware vCenter Java JMX Server Insecure Configuration Java Code Execution Vulnera...
 Severity:    
 Date Published:  12 Oct 2016
VMware vCenter Server contains a remotely accessible JMX RMI service that is not securely configured. An unauthenticated remote attacker that is able to connect to the service may be able use it to execute arbitrary code on the vCenter server. By exploiting known methods, it is possible to remotely load an MLet file from an attacker controlled web server that points at a jar file.
Read more
NTP Unrestricted Query Reflected Denial Of Service Vulnerability
 Severity:    
 Date Published:  12 Oct 2016
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
Read more
Adobe Connect Cross-site Scripting Vulnerabilities
 Severity:    
 Date Published:  12 Oct 2016
Cross-site scripting (XSS) vulnerability in admin/home/homepage/search in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter.
Read more
PREVIOUS
PREVIOUS

Featured Stories

View All