Zimbra versions prior to 8.7 suffer from cross site request forgery vulnerabilities in the administrative interface.
Monthly Archives: January 2017
iTechscripts Freelancer Script 5.11 SQL Injection
iTechscripts Freelancer Script version 5.11 suffers from a remote SQL injection vulnerability in the sk parameter.
School Management Software 2.75 SQL Injection
School Management Software version 2.75 suffers from a remote SQL injection vulnerability.
aSc Timetables 2017 Buffer Overflow / Code Execution
aSc Timetables 2017 suffers from buffer overflow and code execution vulnerabilities.
Zeroshell 3.6.0 / 3.7.0 Remote Code Execution
Zeroshell versions 3.6.0 and 3.7.0 suffer from an unauthenticated remote code execution vulnerability.
SapLPD 7.4.0 Denial Of Service
SapLPD version 7.4.0 suffers from a denial of service vulnerability.
WhatsApp Backdoor allows Hackers to Intercept and Read Your Encrypted Messages
Most people believe that end-to-end encryption is the ultimate way to protect your secret communication from snooping, and it does, but it can be intercepted if not implemented correctly.
After introducing “end-to-end encryption by default” last year, WhatsApp has become the world’s largest secure messaging platform with over a billion users worldwide.
But if you think your conversations are
Roxy Fileman 1.4.5 Cross Site Scripting
Roxy Fileman version 1.4.5 suffers from a cross site scripting vulnerability.
Mozilla Firefox Use-After-Free
Mozilla Firefox versions prior to 50.1.0 use-after proof of concept exploit.
CVE-2010-5327
Liferay Portal through 6.2.10 allows remote authenticated users to execute arbitrary shell commands via a crafted Velocity template.