Piwigo Facetag plugin version 0.0.3 suffers from a remote SQL injection vulnerability.
OV3 Online Administration version 3.0 suffers from multiple unauthenticated remote SQL injection vulnerabilities.
OV3 Online Administration version 3.0 suffers from an authenticated remote code execution vulnerability.
OV3 Online Administration version 3.0 suffers from a traversal vulnerability that allows for arbitrary file access.
WordPress Simple Slideshow Manager plugin versions 2.2 and below suffer from multiple cross site scripting vulnerabilities.
This proof of concept code shows how manager functionality can be abused in ModX CMS to upload a shell.
KEMP LoadMaster version 18.104.22.16845 suffers from persistent cross site scripting and remote code execution vulnerabilities.
IBM Informix Dynamic Server suffers from dll injection, PHP code injection, and heap buffer overflow vulnerabilities.
Trend Micro Deep Security version 6.5 suffers from XML external entity injection, local privilege escalation, and remote code execution vulnerabilities.
TerraMaster F2-420 NAS TOS version 3.0.30 suffers from an unauthenticated remote root code execution vulnerability.