Gemalto (Thales Group) DS3 Authentication Server and Ezio Server versions prior to 3.1.0 suffer from semi-blind OS command injection, local file disclosure, and broken access controls that when combined allows…
>> ARCHIVE: 2019-05
SpotIM version 2.2 denial of service proof of concept exploit.
Symphony Project sfDoctrinesfPropel version 1.x suffers from a database password disclosure.
TheHive Project Cortex versions 2.1.3 and below suffer from a server-side request forgery vulnerability.
Convert Video jetAudio version 8.1.7 denial of service proof of concept exploit.
jetCast Server version 2.0 denial of service proof of concept exploit.
SpotPaltalk version 1.1.5 denial of service proof of concept exploit.
ASPRunner.NET version 10.1 denial of service proof of concept exploit.
PHPRunner version 10.1 denial of service proof of concept exploit.
CyberArk Enterprise Password Vault versions 10.7 and below suffer from an XML external entity injection vulnerability.