Pulse version 0.7.0 Final suffers from cross site request forgery and cross site scripting vulnerabilities.
>> ARCHIVE: 2016-04
Multiple reflected cross site scripting issues were discovered in Cyberoam NG appliances. Input passed via the ‘ipFamily’, ‘applicationname’ and ‘username’ GET parameters to LiveConnections.jsp and LiveConnectionDetail.jsp is not properly sanitized…
http://www.phrae.m-society.go.th notified by fr13nds
Apple Security Advisory 2016-03-31-1 – iBooks Author 2.4.1 is now available and addresses a user information disclosure issue.
Easy File Sharing HTTP Server 7.2 SEH Overflow
Internet Explorer – MSHTML!CSVGHelpers::SetAttributeStringAndPointer Use-After-Free (MS16-023)
ManageEngine Password Manager Pro 8102 to 8302 – Multiple Vulnerabilities
PCMAN FTP Server Buffer Overflow – PUT Command
A New CVE-2015-0057 Exploit Technology
The Vulnerability Laboratory Core Research Team discovered a persistent web validation vulnerability in the official Fotinet FortiManager and FortiAnalyzer appliance product series.