#windows

Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability

An issue in the CAB file extraction function of Bitberry File Opener v23.0 allows attackers to execute a directory traversal.

Varient News Magazine Script version 2.2 appears to leave default credentials installed after installation.

Video Whisper Conference version 1.01 suffers from a cross site scripting vulnerability.

Videoflix CMS version 1.3 appears to leave default credentials installed after installation.

Virtues cpanelCMS version 1.0 suffers from a remote SQL injection vulnerability.

Voodoo Chat version 1.3 suffers from a cross site scripting vulnerability.

eneblur CMS version 1.0 suffers from a remote SQL injection vulnerability.

CMS BMGI International version 4.0 suffers from a remote SQL injection vulnerability.

An issue in PEStudio v.9.52 allows a remote attacker to execute arbitrary code via a crafted DLL file to the PESstudio exeutable.