Author: Cyberthreat Blog

SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read the content database.

SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read and write to the users database.

Proxifier for Mac before 2.19.2, when first run, allows local users to gain privileges by replacing the KLoader binary with a Trojan horse program.

SQL injection vulnerability in the getUserUddiElements method in the ES UDDI component in SAP NetWeaver AS Java 7.4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka SAP Security...

Wolf CMS before 0.8.3.1 allows unrestricted file upload and PHP Code Execution because admin/plugin/file_manager/browse/ (aka the filemanager) does not validate the parameter “filename” properly. Exploitation...