WordPress Google Maps plugin version 2.1.2 suffers from a cross site scripting vulnerability.
717c9d71a3429f92c8a268c7c9adeb2b651062d83e2d6c905379409d3ebd668a
WordPress Photo Gallery by Supsystic plugin version 1.8.5 suffers from multiple cross site request forgery vulnerabilities.
3a646b5137f1cfdaa41104d8ab6962a0e7d70e45af1cf63b0226b0899996ff5f
WordPress Email Users plugin version 4.8.3 suffers from a cross site request forgery vulnerability.
e95cd129dfdad640f2314a8c9ef5fc62bab02dab246202c827b58fe411e8e97d
WordPress Peter's Login Redirect plugin version 2.9.0 suffers from cross site scripting and cross site request forgery vulnerabilities.
d923d75814f53455678a49a2ea9a573214a261b554bc26017e3d32911f08e0ae
WordPress Photo Gallery by Supsystic plugin version 1.8.5 suffers from a stored cross site scripting vulnerability.
bbf2306a93d24ed38fba12a410983e1a258e6de79e1573df0e5cad64ddd36e74
Taser Axon Dock version 3.1 suffers from authentication bypass vulnerabilities.
c086079fbf1acf29b258bd9b3f252722b6482903a31b68abdf388d35531dd8f2
Stash CMS version 1.0.3 suffers from a remote SQL injection vulnerability.
f5622e0586714d295f1cf6a2ad1a894f32c7b564905f8c0aa36445d3eac7a2fa
nopCommerce version 3.70 suffers from a cross site scripting vulnerability.
9e60e31716a27cc0129661dcb225c4369e49cd30b7763e89e178bad6a5bf6b9a
OpenCart version 2.0.3.1 suffers from a cross site scripting vulnerability.
f5c86ef5a704aa36adf018c3d9382bde7480eee1600faeb5b41239ea7b4ff895
Ubuntu Security Notice 3061-1 - Eddie Harari discovered that OpenSSH incorrectly handled password hashing when authenticating non-existing users. A remote attacker could perform a timing attack and enumerate valid users. Tomas Kuthan, Andres Rojas, and Javier Nieto discovered that OpenSSH did not limit password lengths. A remote attacker could use this issue to cause OpenSSH to consume resources, leading to a denial of service. Various other issues were also addressed.
380999cba357e2595697463d6456f1f369ee299011b921357ee88539c371e7e6
Debian Linux Security Advisory 3648-1 - Multiple vulnerabilities were discovered in the dissectors for NDS, PacketBB, WSP, MMSE, RLC, LDSS, RLC and OpenFlow, which could result in denial of service or the execution of arbitrary code.
948433c5a0efef880e357a8569b927248b060de0f012798fc7a760fd53353c3c
A cross site request forgery vulnerability in the Telegram Bot API can allow for denial of service attacks.
835ca64aec321fe7637f2e48a1c69b51ffd58b72bb79f3906241e0d80705c4ef
Linksys E2500 and E1200 devices suffered from a command injection vulnerability.
4809215ff6bf7ac34139ad0ed64e0c279221a469257b12c842d63878327b9050
Parent controls on the Linksys E1200 suffered from having missing authorization controls.
d69510cd73278b8deb8109b50b2d422b2b1d8c1673b2ab98fec4e63eead695a9
PayPal suffered from a two-factor authentication bypass vulnerability.
5d84f3ddb984dc18cb3b2db86eb3ed7ac45075551ab10c440524c17cc39101b0
Joomla AceFTP component appears to suffer from an arbitrary file download vulnerability.
00bcb4018fc78ef49001b31c3d983c01d268dc3d213ea02b151389cd55ed823f