The vSphere Client (HTML5) contains a remote code execution vulnerability in a vCenter Server plugin. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
Upgrade to the latest version of VMware vCenter.
WordPress Plugin Best Seo Remote Code Execution (1.5)
WordPress Plugin WP Marketplace TimThumb Arbitrary File Upload (1.1.0)
WordPress Plugin Webapp builder (Free mobile apps native iPhone iOS & Android Winphone mobile apps) Arbitrary File Upload (2.0)
Oracle E-Business Suite Unauthenticated Remote Code Execution