>> ARCHIVE: 2017-09

ACG (Arbitrary Code Guard) in Microsoft Edge is bypassable. The bypass has been tested on Microsoft Edge 40.15063.0.0 running on Windows 10 Enterprise 64-bit with Creators Update (Version 1703, OS…

Mako Web Server suffers from file disclosure, remote command execution, and server-side request forgery vulnerabilities.

IBM Infosphere Information Server / Datastage versions 9.1, 11.3, and 11.5 (including Cloud version 11.5) suffer from bypass, XML external entity injection, DLL side loading, and various other vulnerabilities.

VLC Media Player iOS application version 2.7.8 suffers from a file disclosure vulnerability.

Ubiquiti Networks UniFi Cloud Key wwith firmware versions 0.6.4 and below suffer from an authenticated command injection vulnerability.

SilverStripe CMS versions 3.5.3 and below suffer from a persistent cross site scripting vulnerability.

osTicket version 1.10 suffers from a remote SQL injection vulnerability.

FoodStar Swiggy Clone Script version 1.0 suffers from a remote SQL injection vulnerability.

PHP Dashboards NEW version 4.4 suffers from an arbitrary file read vulnerability.

Jungo DriverWizard WinDriver versions 12.4.0 and below suffer from a kernel pool overflow vulnerability.