It has been discovered that the extension "wfGallery" (wf_gallery) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "BibTex Publications" (si_bibtex) is susceptible to Cross-Site Scripting and SQL Injection.

It has been discovered that the extension "Drag Drop Mass Upload" (ameos_dragndropupload) is susceptible to Cross-Site Scripting, Cross-Site Request…

It has been discovered that the extension "phpMyAdmin" (phpmyadmin) is susceptible to Cross-Site Scripting, Denial of Service and Local File…

It has been discovered that the extension "WebDav for filemounts" (webdav) is susceptible to Improper Access Control.

It has been discovered that the extension "phpMyAdmin" (phpmyadmin) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Dynamic Content Elements" (dce) is susceptible to Information Disclosure.

It has been discovered that the extension "fal_sftp" (fal_sftp) is susceptible to Improper Access Control.

It has been discovered that the extension "Calendar Base" (cal) is susceptible to Denial of Service.

It has been discovered that the extension "phpMyAdmin" (phpmyadmin) is susceptible to Cross-Site Scripting and Cross-Site Request Forgery.