[webapps] – Orchard CMS 1.7.3, 1.8.2, 1.9.0 – Stored XSS Vulnerability

[local] Daikin Security Gateway 14 – Remote Password Reset

[webapps] ERPNext 14.82.1 – Account Takeover via Cross-Site Request Forgery (CSRF)