Progea Movicon versions 11.5.1181 and below suffer from search path related vulnerabilities.
>> ARCHIVE: 2017-11
WordPress User Login History plugin version 1.5.2 suffers from a cross site scripting vulnerability.
Ingenious School Management System 2.3.0 – ‘friend_index’ SQL injection
WhatsApp 2.17.52 – Memory Corruption
OctoberCMS 1.0.426 (Build 426) – Cross-Site Request Forgery