Geist WatchDog Console version 3.2.2 suffers from cross site scripting, XML external entity injection, and insecure file permission vulnerabilities.
>> ARCHIVE: 2018-04
Joomla JS Jobs component version 1.2.0 suffers from a cross site request forgery vulnerability.
Facebook Graph groups crosswalk user’s metadata mapping weakness demo proof of concept script.
WordPress Caldera Forms plugin version 1.5.9.1 suffers from a cross site scripting vulnerability.
Lutron Quantum versions 2.0 through 3.2.243 suffer from an information disclosure vulnerability.
Digital Guardian Management Console version 7.1.2.0015 suffer from a server-side request forgery vulnerability.
Digital Guardian Management Console version 7.1.2.0015 suffers from an XML external entity injection vulnerability.
Cobub Razor 0.8.0 – Physical path Leakage
http://skmo.moph.go.th notified by RxR
Joomla jDownloads component version 3.2.58 suffers from a cross site scripting vulnerability.