WordPress Unite Gallery Lite plugin version 1.4.6 suffers from cross site request forgery and remote SQL injection vulnerabilities.
35ca2d59e923c4dcfa102cae5ca95a5f2022862e2a8f048b21905f0568781656Secunia Security Advisory - Two vulnerabilities have been discovered in the WP-Predict plugin for WordPress, which can be exploited by malicious users to conduct SQL injection attacks.
e15c31a16b0655100249b2a4596819a40f8a172cd84d6112bc7f35cd2d9e2fbfWordPress WP-Predict plugin version 1.0 suffers from a remote blind SQL injection vulnerability.
89d13942a5449812b48fdb60c762e44190aa23e793999799c7bcef43b1d46cc7Secunia Security Advisory - Charlie Eriksen has discovered multiple vulnerabilities in the WP Symposium plugin for WordPress, which can be exploited by malicious users and malicious people to conduct SQL injection attacks.
204965fbcfbd5c0ab62f3e975ebfc06b7eeaa212bda00429378d44eca7344bf0Debian Linux Security Advisory 2509-1 - Ulf Harnhammar found a buffer overflow in Pidgin, a multi protocol instant messaging client. The vulnerability can be exploited by an incoming message in the MXit protocol plugin. A remote attacker may cause a crash, and in some circumstances can lead to remote code execution.
34f459309c2d1dcbc50629b0c7d27153a6e3700d8fdab0296501357511e10da3Secunia Security Advisory - A vulnerability has been reported in the Artiss Code Embed plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
a5c5d8b71d05b7482579ebe6281dae278a91d23a5e06327523dae5ab37a37f2fSecunia Security Advisory - Sammy Forgit has reported a vulnerability in the Flip Book plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
e614bfc8773848db2f50dd9f4717c3a6b36a6f5a7a4fd4cfaca2ea03f356f82eSecunia Security Advisory - Sammy Forgit has discovered a vulnerability in the SocialFit plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
ce213664110825cd433e405cffe61f0eb5e6db8a7762f4c09f6112ec94144d4aSecunia Security Advisory - Two vulnerabilities have been reported in the MT4i plugin for Movable Type, which can be exploited by malicious people to conduct cross-site scripting attacks.
13672309dc8bd576a483e3860598c740f34aa025a7b8fb9b35254dc482601cf3Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the WP Socializer plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
af552654bea1640f884caf8a920032f2584ca862d46e3c53270db214d2a71150Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Front-end Editor plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
ae9492f46bc53cc9b8bdf42e5a76318fefe3c2f60f4fb5201aeaf233693d6937Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the PHPFreeChat plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
4e4dfae1d2d31df99da08a5522d54b24e7199f00899121c3fbf42eae6c3ca680Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Knews Multilingual Newsletters plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
f46b22b703464c1c0511904b0ea5258a6a49c0323e95c819d3f658ab34556693Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Contus Vblog plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
0ff2417c74091799c32bf1e597e7aef40b81f282cf3a097ff1220a3ff19b3944Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the custom tables plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
220fe9d65f81acd053ef51471802014765e9abed1b49dc7b22ea6a5c9c8be0ceSecunia Security Advisory - Sammy Forgit has discovered a vulnerability in the church_admin plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
be28034156cfbf05ed35a6fd69452d00912abd1cd795f9e7df7fd71ee2b53e7aSecunia Security Advisory - Chris Kellum has discovered two vulnerabilities in the MoodThingy Mood Rating Widget plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
774da4ab756870fd29f8024ed6652cd0c27477523ecb0a1f02b8ad1badf12b11Secunia Security Advisory - A vulnerability with an unknown impact has been reported in the Email Newsletter plugin for WordPress.
116f00b49a78adc12dee391f764ea188717d40e700a43b98cfd4ea42c0d54709Secunia Security Advisory - Multiple vulnerabilities have been discovered in the Minishop plugin for gpEasy CMS, which can be exploited by malicious users to conduct script insertion attacks.
313b179aea0633f46397ceea096800641b76bb58f71189ba768a98ae22632eb1Secunia Security Advisory - Charlie Eriksen has discovered a vulnerability in the Quotes Collection plugin for WordPress, which can be exploited by malicious people to conduct cross-site request forgery attacks.
52956b1df0cad27e6f5c4d28385f1b30aa8e2c607d6817e3c631ffc7aeec21f2The WordPress FlexiWeb-Form plugin suffers from a remote shell upload vulnerability.
f5788fd20d126e3bdb40fe524e1682956c5e0a164a7661495c6755a22acfd6e9gp Easy CMS with Minishop plugin version 1.5 suffers from a persistent cross site scripting vulnerability.
6d4b62f9487a164867af96f8d469b70aabc6091f5ecec316b4a62639a6cb766bstrongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms.
1a7ed98015df32e7412caf37391105af25a9dc66a0e357a1c92ccd5a9f180298This Metasploit module exploits a stack-based buffer overflow vulnerability in versions 4.3.2.0 and below of Irfanview's JPEG2000.dll plugin. This exploit has been tested on a specific version of irfanview (v4.3.2), although other versions may work also. The vulnerability is triggered via parsing an invalid qcd chunk structure and specifying a malformed qcd size and data. Payload delivery and vulnerability trigger can be executed in multiple ways. The user can double click the file, use the file dialog, open via the icon and drag/drop the file into Irfanview\'s window. An egg hunter is used for stability.
c5cce711dbd4abe77f358a5360b9fd21367c38e3811ab24c191fb5a02cb79609Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Items Manager plugin for GetSimple CMS, which can be exploited by malicious people to compromise a vulnerable system.
bac3348b2a4f3591e49f5a2cf12251641e00d52ca7be21a7931e5738f34470c1Secunia Security Advisory - Stefan Schurtz has discovered some vulnerabilities in the Count Per Day plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
46b5dacad18e1d60891f4f32bcc763af5e8455e6427d3f2a0910c0c99169ff07
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed