>> ARCHIVE: 2015-11

TheHostingTool version 1.2.6 suffers from a remote SQL injection vulnerability.

TheHostingTool version 1.2.6 suffers from a cross site scripting vulnerability.

Arris TG1682G modem suffers from a persistent cross site scripting vulnerability.

Solarwinds Log and Event Manager version 6.1.0 suffers from a remote command execution vulnerability.

NXFilter version 3.0.3 suffers from a cross site request forgery vulnerability.

NXFilter version 3.0.3 suffers from a cross site scripting vulnerability.

A heap-based out-of-bounds memory read has been encountered in FreeType. It has been reproduced with the current version of freetype2 from master git branch, with a 64-bit build of the…

Google AdWords API PHP client library versions 6.2.0 and below suffer from an arbitrary PHP code execution vulnerability.

Google AdWords API PHP client library versions 6.2.0 and below suffer from an XML eXternal Entity injection vulnerability.

TestLink version 1.9.14 suffers from a persistent cross site scripting vulnerability.