HRSALE 1.1.8 – Cross-Site Request Forgery (Add Admin)

from Exploit-DB.com RSS Feed https://ift.tt/3cTsQwv
via IFTTT

WordPress Plugin Appointment Booking Calendar 1.3.34 – CSV Injection

from Exploit-DB.com RSS Feed https://ift.tt/38HMJn5
via IFTTT

WatchGuard Fireware AD Helper Component 5.8.5.10317 – Credential Disclosure

from Exploit-DB.com RSS Feed https://ift.tt/2vPWh2c
via IFTTT

Joomla! Component com_newsfeeds 1.0 – ‘feedid’ SQL Injection

from Exploit-DB.com RSS Feed https://ift.tt/2TXCUfB
via IFTTT

WordPress Plugin Search Meter 2.13.2 – CSV injection

from Exploit-DB.com RSS Feed https://ift.tt/339ug1v
via IFTTT

ASUS AXSP 1.02.00 – ‘asComSvc’ Unquoted Service Path

from Exploit-DB.com RSS Feed https://ift.tt/2wLsjfO
via IFTTT

PHPStudy – Backdoor Remote Code execution (Metasploit)

from Exploit-DB.com RSS Feed https://ift.tt/2IAukht
via IFTTT

Nagios XI – Authenticated Remote Command Execution (Metasploit)

from Exploit-DB.com RSS Feed https://ift.tt/2TF5SSz
via IFTTT

Persian VIP Download Script 1.0 – ‘active’ SQL Injection

from Exploit-DB.com RSS Feed https://ift.tt/39F8YeM
via IFTTT

YzmCMS 5.5 – ‘url’ Persistent Cross-Site Scripting

from Exploit-DB.com RSS Feed https://ift.tt/2W2gMDk
via IFTTT