MyBB version 1.8.6 suffers from a remote SQL injection vulnerability.
Monthly Archives: September 2016
MyBB 1.8.6 Data Validation
MyBB version 1.8.6 suffers from improper validation of data passed to eval allowing for the disclosure of the database password.
MyBB 1.8.6 Cross Site Request Forgery / Weak Hashing
MyBB version 1.8.6 suffers from a cross site request forgery vulnerability. Additionally, it stores passwords using weak hashing and sends password in clear text via email.
Kajona 4.7 Cross Site Scripting / Directory Traversal
Kajona version 4.7 suffers from cross site scripting and directory traversal vulnerabilities.
Peel Shopping 8.0.2 Object Injection
Peel Shopping version 8.0.2 suffers from an object injection vulnerability.
Cisco ASA EXTRABACON Improved Shellcode
69 bytes small Cisco ASA authentication bypass (EXTRABACON) better shellcode.