http://www.cdd.go.th notified by Nofawkx Al
Python v2.7 v1.5.4 iOS – Filter Bypass & Persistent
The vulnerability laboratory core research team discovered a filter bypass issue and a persistent input validation vulnerability in the Python v2.7 v1.5.4 iOS mobile application.
Trend Micro (SSO) – SSO Redirect & Session Vulnerability
The vulnerability laboratory core research team discovered a redirect and session web vulnerability in the official trend micro sso online service web-application.
Dorsa Web CMS – Multiple SQL Injection Vulnerabilities
An independent vulnerability laboratory researcher discovered multiple sql injection web vulnerabilities in the Dorma Web Content Management System.
http://cdregion01.cdd.go.th
http://cdregion01.cdd.go.th notified by Nofawkx Al
PayPal Filter Bypass / Malicious Input
PayPal suffered from a filter bypass vulnerability that allowed for malicious input into email.
Easy Hosting Control Panel 0.37.9 Bypass / File Upload / Disclosure
Easy Hosting Control Panel versions 0.29 through 0.37.9 suffer from information disclosure, authentication bypass, clear text password storage, and remote file upload vulnerabilities.
Manage Engine EventLog Analyzer 11.0 Build 11000 Cross Site Scripting
Manage Engine EventLog Analyzer version 11.0 build 11000 suffers from multiple cross site scripting vulnerabilities.
CubeCart 6.0.10 CSRF / XSS / SQL Injection
CubeCart version 6.0.10 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
Apache OpenMeetings 3.1.0 Path Traversal
Apache OpenMeetings versions 1.9.x through 3.1.0 suffer from a path traversal vulnerability.