QNAP PhotoStation versions prior to 5.x suffer from a cross site scripting vulnerability.
>> ARCHIVE: 2018-05
Feedy RSS News Ticker version 2.0 suffers from a remote SQL injection vulnerability.
Qualys performed an extensive audit of procps-ng. They discovered hundreds of bugs and vulnerabilities.
Epic Games Launcher version 7.9.4-4058369 suffers from an insecure file permissions vulnerability.
Epic Games Fortnite version 4.2-CL-4072250 suffers from an insecure file permissions vulnerability.
MySQL Blob Uploader version 1.7 suffers from cross site scripting and remote SQL injection vulnerabilities.
MySQL Smart Reports version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
GNU glibc < 2.27 – Local Buffer Overflow
Timber 1.1 – Cross-Site Request Forgery
ASP.NET jVideo Kit – ‘query’ SQL Injection