:: Deepquest ::

Intel Management and Security Application Local Management Service LMS.exe version 7.1.13.1088 suffers from a privilege escalation vulnerability.

Intel Identity Protection Technology Host Interface Service jhi_service.exe version 1.2.22.0 suffers from a privilege escalation vulnerability.

MikroTik RouterOS version 6.36.2 suffers from a cross site scripting vulnerability.

http://chkr.go.th notified by aDriv4

PHP Classifieds Rental Script version 1.0 suffers from a cross site scripting vulnerability.

The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option.

WordPress XCloner plugin versions 3.1.5 and below suffer from remote command execution and denial of service vulnerabilities.

OpenGB version 1.2.3 suffers from a cross site scripting vulnerability.

WordPress Calendar plugin version 1.3.7 suffers from a cross site scripting vulnerability.

D-Link ADSL router DSL-2750U with firmware version IN_1.08 suffers from a file disclosure vulnerability.