Linux suffers from a VMA use-after-free vulnerability via a buggy vmacache_flush_all() fastpath.
>> ARCHIVE: 2018-09
TransMac version 12.2 suffers from a denial of service vulnerability.
CrossFont version 7.5 suffers from a denial of service vulnerability.
tekno.Portal version 0.1b suffers from a cross site scripting vulnerability.
Linux suffers from an integer overflow vulnerability in create_elf_tables(). Multiple exploits provided.
WordPress WP Insert plugin versions 2.4.2 and below suffer from a remote file upload vulnerability.
Progress Kendo UI Editor version 2018.1.221 suffers from a persistent cross site scripting vulnerability.
Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities.
CMS ISWEB version 3.5.3 suffers from a remote SQL injection vulnerability.
ManageEngine Desktop Central 10.0.271 – Cross-Site Scripting