CVE-2021-24825

The Custom Content Shortcode WordPress plugin before 4.0.2 does not validate the data passed to its load shortcode, which could allow Contributor+ v 4.0.1 or Admin+ v 4.0.2 users to display arbitrary files from the filesystem such as logs, .htaccess etc, as well as perform Local File Inclusion...

Design/Logic Flaw

The Custom Content Shortcode WordPress plugin before 4.0.2 does not validate the data passed to its load shortcode, which could allow Contributor+ v 4.0.1 or Admin+ v 4.0.2 users to display arbitrary files from the filesystem such as logs, .htaccess etc, as well as perform Local File Inclusion...

How to lock Chrome to a single site by using Android Enterprise policies ?

This article mentions how to lock Chrome to a singe site and block other traffic using Android Enterprise policies...

WPS Hide Login 1.0 - CSRF

CSRF security issue when saving option value in single site and multisite mode...

aspwebalbum 3.2 (upload/sql/xss) Multiple Vulnerabilities

No description provided by source. - Discovered bay AleminKrali ==== - aspWebAlbum 3.2 - Script Download http://www.fullrevolution.com - aspWebAlbum 3.2 Single Site License | $60.00 : - HomePage al3m.blogspot.com...

aspWebAlbum 3.2 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =============================================== aspWebAlbum 3.2 Multiple Remote Vulnerabilities =============================================== - Discovered by AleminKrali - aspWebAlbum 3.2 - Script Download "http://www.fullrevolution.com"...

aspWebAlbum 3.2 (Upload/SQL/XSS) Multiple Remote Vulnerabilities

No description provided by source. - Discovered bay AleminKrali ==== - aspWebAlbum 3.2 - Script Download "http://www.fullrevolution.com" - aspWebAlbum 3.2 Single Site License | $60.00 : - HomePage al3m.blogspot.com...