Dynojet Power Core 2.3.0 – Unquoted Service Path

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/2ZTKVZL
via IFTTT

Mini-XML 3.2 – Heap Overflow

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3nNn4Tw
via IFTTT

Movable Type 7 r.5002 – XMLRPC API OS Command Injection (Metasploit)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3GDnh4w
via IFTTT

WebCTRL OEM 6.5 – ‘locale’ Reflected Cross-Site Scripting (XSS)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3Ew5bPL
via IFTTT

Umbraco v8.14.1 – ‘baseUrl’ SSRF

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3nK0yer
via IFTTT

PHPGurukul Hostel Management System 2.1 – Cross-site request forgery (CSRF) to Cross-site Scripting (XSS)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3jVnwhA
via IFTTT

WordPress Plugin Supsystic Contact Form 1.7.18 – ‘label’ Stored Cross-Site Scripting (XSS)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3CwBQEk
via IFTTT

WordPress Plugin Filterable Portfolio Gallery 1.0 – ‘title’ Stored Cross-Site Scripting (XSS)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/3GDsXeJ
via IFTTT

phpMyAdmin 4.8.1 – Remote Code Execution (RCE)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/2ZE5Q3b
via IFTTT

WordPress 4.9.6 – Arbitrary File Deletion (Authenticated) (2)

from Exploit-DB.com RSS Feed hxxps://https://ift.tt/2ZFAJDD
via IFTTT