The password reset form in Nextcloud and Owncloud suffers from a user enumeration vulnerability.
da096e428809ed496cecdae0c5425aec544c24d1e1001bda302b6555825ea2ca
An independent research uncovered a critical vulnerability in badly configured webadmin plugin of many thousand enigma2 boxes in the wild. This misconfiguration could be used by unauthenticated remote attackers to achieve remote arbitrary code execution in the context of root superuser. To exploit the vulnerability an attacker could target common ISP networks for dial-in users.
dbc3dbad2dc6e079840c687794b1d6eb95d782672f94cfae413cfa9975e07365
cpCommerce suffers from a cross site scripting vulnerability in search.php.
ef9b5836653513efb4328f89b13fbc77287f7433d230eaecebabf6eae85bc911
FlatPress versions 0.804 and below suffer from multiple cross site scripting vulnerabilities.
3fdea98d891ca192999c2f55a8bcb56e78c93105dbbf84ced955644449e6ccbc
Fuzzylime Forum versions 3.02 and below suffer from a cross site scripting vulnerability.
8dcceb0a8cf2f068589c86d3c897c9417cc678b578f6dcd3f659e2e21a1a7ae7
XRMS suffers from multiple cross site scripting and SQL injection vulnerabilities.
0bdef0ca481ae19458dda409c2fc4ab97493d63d05ac6fccbf3c16f2f3b41027
vtigerCRM version 5.0.4 suffers from multiple cross site scripting vulnerabilities.
7ca2233625fca621ba12f5103e00f5c186340f892a1101e6ccde9d46319553e8
Owl versions 0.95 and below suffer from a cross site scripting vulnerability.
8b07aa92f2d568035fe89e06ee016bf59945b36fc617bdde35d89e10e009a0d1