Carel pCOWeb < B1.2.1 – Cross-Site Scripting
>> ARCHIVE: 2019-05
Carel pCOWeb < B1.2.1 – Cross-Site Scripting
Carel pCOWeb < B1.2.1 – Credentials Disclosure
Zoho ManageEngine ServiceDesk Plus 9.3 – Cross-Site Scripting
AUO Solar Data Recorder < 1.3.0 – 'addr' Cross-Site Scripting
GAT-Ship Web Module versions 1.30 and below suffer from an information disclosure vulnerability.
Horde Webmail version 5.2.22 suffers from code execution, cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
Freelance Cockpit CRM version 3.3.1 suffers from a remote SQL injection vulnerability.
Cisco Expressway Gateway version 11.5.1 suffers from a directory traversal vulnerability.
Huawei eSpace version 1.1.11.103 suffers from a DLL Hijacking issue. The vulnerability is caused due to the application loading libraries (mfc71enu.dll, mfc71loc.dll, tcapi.dll and airpcap.dll) in an insecure manner. This…
Huawei eSpace Meeting cenwpoll.dll unicode stack buffer overflow exploit with SEH overwrite.