CVE-2016-10995 (telvolution)

The Tevolution plugin before 2.3.0 for WordPress has arbitrary file upload via single_upload.php or single-upload.php.

View Full Alert

Related Posts

  • CVE-2016-10937

    IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate. View Full Alert

  • CVE-2016-10761

    Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack. View Full Alert

  • CVE-2016-10814

    cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119). View Full Alert