>> ARCHIVE: 2018-09

Joomla JCK Editor version 6.4.4 suffers from a remote SQL injection vulnerability.

XAMPP Control Panel version 3.2.2 suffers from a denial of service vulnerability.

Oracle VirtualBox Manager version 5.2.18 r124319 suffers from a denial of service vulnerability.

Netis ADSL Router DL4322D RTK version 2.1.1 suffers from a cross site scripting vulnerability.

Microsoft Edge Chakra JIT suffers from a type confusion vulnerability in localeCompare.

Microsoft Edge Chakra suffers from a type confusion vulnerability with PathTypeHandlerBase::SetAttributesHelper.

WordPress Arigato Autoresponder and Newsletter plugin version 2.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

This Metasploit module exploits an arbitrary file write vulnerability in the Netscape Portable Runtime library (libnspr) on unpatched Solaris systems prior to Solaris 10u3 which allows users to gain root…