Sitemakin SLAC 1.0 – ‘my_item_search’ SQL Injection
>> ARCHIVE: 2018-05
Sitemakin SLAC 1.0 – ‘my_item_search’ SQL Injection
http://hr2.hss.moph.go.th notified by ZoRRoKiN
CloudMe Sync < 1.11.0 – Buffer Overflow (SEH) (DEP Bypass)
TP-Link TL-WR840N/TL-WR841N – Authenticaton Bypass
DomainMod 4.09.03 – ‘sslpaid’ Cross-Site Scripting
DomainMod 4.09.03 – ‘oid’ Cross-Site Scripting
Oracle WebCenter versions 7.x prior to 11gR1 suffer from multiple cross site scripting vulnerabilities.
Tim Balitbang Depdiknas version 3.5 suffers from a persistent cross site scripting vulnerability.
Tim Balitbang Depdiknas version 3.5 suffers from a remote SQL injection vulnerability.
Android OS did not use the FLAG_SECURE flag for sensitive settings, potentially exposing sensitive data to other applications on the same device with the screen capture permissions. The vendor (Google)…