Tapplock Smart Lock suffers from multiple insecure direct object reference vulnerabilities.
>> ARCHIVE: 2018-06
phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not properly choose delimiters to prevent use of the preg_replace (aka eval) modifier, which might allow remote attackers…
Joomla Jomres component version 9.11.2 suffers from a cross site request forgery vulnerability.
Audiograbber version 1.83 local SEH buffer overflow exploit.
Redis-cli versions prior to 5.0 buffer overflow proof of concept exploit.
Redatam Web Server prior to version 7 suffer from a directory traversal vulnerability.
Nikto version 2.1.6 suffers from a csv injection vulnerability.
Pale Moon Browser versions prior to 27.9.3 suffer from a use-after-free vulnerability.
RabbitMQ Web Management versions prior to 3.7.6 suffer from a cross site request forgery vulnerability.
Microsoft COM for Windows privilege escalation proof of concept exploit. A remote code execution vulnerability exists in “Microsoft COM for Windows” when it fails to properly handle serialized objects. An…