Unauthenticated Local File Inclusion in Especio <= 1.0 versions.
Unauthenticated PHP Object Injection in SeaFood Company <= 1.4 versions.
Unauthenticated Local File Inclusion in Deliciosa <= 1.10.0 versions.
Unauthenticated Local File Inclusion in Corbesier <= 1.15.0 versions.
Unauthenticated Local File Inclusion in CopyPress <= 1.4.5 versions.
Unauthenticated Local File Inclusion in Ingenioso <= 1.14.0 versions.
Unauthenticated Local File Inclusion in Iona <= 1.0.8 versions.
Unauthenticated Local File Inclusion in MaxiNet <= 1.2.10 versions.
Unauthenticated Local File Inclusion in Nexio <= 1.10.0 versions.
Unauthenticated Local File Inclusion in Planty <= 1.14.0 versions.
Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions.
Unauthenticated Local File Inclusion in Raider Spirit <= 1.1.2 versions.
Unauthenticated PHP Object Injection in Hot Coffee <= 1.7 versions.
Unauthenticated Local File Inclusion in Rosaleen <= 2.8 versions.
Unauthenticated Local File Inclusion in Modernee <= 1.6.0 versions.
Unauthenticated Cross Site Scripting (XSS) in Qreatix <= 1.9.4 versions.
Subscriber Arbitrary Content Deletion in Brikk <= 3.0.0 versions.
HCL iControl was affected by Inadequate Session Timeout vulnerability. The vulnerability involves a security risk where a web application fails to automatically terminate user sessions after a period of inactivity
Subscriber Arbitrary File Deletion in WPBot Pro Wordpress Chatbot <= 13.6.5 versions.
Subscriber Arbitrary File Upload in PT Luxa Addons <= 1.2.2 versions.