WordPress Plugin WP-Lister Lite for Amazon is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP-Lister Lite for Amazon version 0.9.6.35 is vulnerable; prior versions may also be affected.
Update to plugin version 0.9.6.36 or latest
WordPress Plugin Essential Real Estate Cross-Site Scripting (1.7.0)
WordPress Plugin WP Coder-add custom html, css and js code SQL Injection (2.5.3)
Joomla! Core 2.5.x Information Disclosure (2.5.0 - 2.5.4)
WordPress Plugin WP Social Sharing Cross-Site Scripting (2.2)