Drupal < 7.58 – 'Drupalgeddon3' Authenticated Remote Code (Metasploit)
>> ARCHIVE: 2018-04
Drupal < 7.58 – 'Drupalgeddon3' Authenticated Remote Code (Metasploit)
Nagios XI 5.2.[6-9], 5.3, 5.4 – Chained Remote Root
WordPress Plugin Form Maker 1.12.20 – CSV Injection
macOS 10.13.2 – Double mach_port_deallocate in kextd due to Failure to Comply with MIG Ownership Rules
Navicat < 12.0.27 – Oracle Connection Overflow
macOS/iOS – ReportCrash mach port Replacement due to Failure to Respect MIG Ownership Rules
TP-Link Technologies TL-WA850RE Wi-Fi Range Extender suffers from an unauthorized remote reboot vulnerability.
Frog CMS version 0.9.5 suffers from a persistent cross site scripting vulnerability.
Google Chrome V8 suffers from an arrow function scope fixing bug.
Shopy Point of Sale version 1.0 suffers from a CSV injection vulnerability.