>> ARCHIVE: 2018-08

VMWare Player version 12.5.9 suffers from denial of service and privilege escalation vulnerabilities.

Linkedin mobile iOS application version 9.11.8592.4 suffers from a CPU resource exhaustion vulnerability.

Chartered Accountant: Auditor Website version 2.0.1 suffers from a cross site scripting vulnerability.

WityCMS version 0.6.2 suffers from a cross site request forgery vulnerability.

TI Online Examination System version 2 suffers from an arbitrary file download vulnerability.

FB Inboxer version 1.2 suffers from a remote SQL injection vulnerability.

ASUS DSL-N12E_C1 version 1.1.2.3_345 suffers from a remote command execution vulnerability.

CoSoSys Endpoint Protector version 4.5.0.1 suffers from an authenticated remote root command injection vulnerability.

Seq versions 4.2.476 and below suffer from an authentication bypass vulnerability.

This Metasploit module exploits a vulnerability in SecureSphere cli to escape the sealed-mode of Imperva and execute code as the root user. This Metasploit module requires credentials of a user…