QNap QVR Client 5.1.1.30070 – ‘Password’ Denial of Service (PoC)
>> ARCHIVE: 2018-07
QNap QVR Client 5.1.1.30070 – ‘Password’ Denial of Service (PoC)
The Davolink DVW 32000 router suffers from a password disclosure vulnerability.
Shopclues.com suffers from a cross site request forgery vulnerability.
A URL redirect at mcafee.com suffers from a cross site scripting vulnerability.
SMPlayer version 18.6.0 suffers from a memory corruption vulnerability that allows for denial of service.
NUUO NVRmini suffers from a remote command execution vulnerability in upgrade_handle.php.
GeoVision GV-SNVR0811 suffers from a directory traversal vulnerability.
The Microsoft Windows kernel suffers from an OTF font processing pool-based buffer overflow via a malformed GPOS table in ATMFD.DLL.
Core FTP 2.0 – ‘XRMD’ Denial of Service (PoC)
Trivum Multiroom Setup Tool 8.76 – Corss-Site Request Forgery (Admin Bypass)