Jorani Leave Management System version 0.6.5 suffers from a remote SQL injection vulnerability.
>> ARCHIVE: 2018-09
WirelessHART Fieldgate SWG70 version 3.0 suffers from a directory traversal vulnerability.
D-Link Dir-600M N150 suffers from a cross site scripting vulnerability.
KONE KGC versions 4.6.4 and below suffer from unauthenticated remote code execution, denial of service, local file inclusion, and missing FTP access control vulnerabilities.
Cisco Umbrella Roaming Client version 2.0.168 suffers from a privilege escalation vulnerability.
IDOR on ProConf Peer-Review and Conference Management versions 6.0 and below suffer from an insecure direct object reference vulnerability that allows for file disclosure.
DokuWiki version 2018-04-22a Greebo suffers from a CSV formula injection vulnerability that allows for arbitrary code execution.
This Metasploit module exploits a -dSAFER bypass in Ghostscript to execute arbitrary commands by handling a failed restore (grestore) in PostScript to disable LockSafetyParams and avoid invalidaccess. This vulnerability is…
Softneta MedDream PACS Server Premium 6.7.1.1 – Directory Traversal
iSmartViewPro 1.5 – ‘SavePath for ScreenShots’ Local Buffer Overflow (SEH)