[webapps] – Xibo 1.2.2 and 1.4.1 (index.php, p param) – Directory Traversal Vulnerability

[local] Daikin Security Gateway 14 – Remote Password Reset

[webapps] ERPNext 14.82.1 – Account Takeover via Cross-Site Request Forgery (CSRF)