:: Deepquest ::

Novismart CMS suffers from a remote SQL injection vulnerability.

Axway SecureTransport 5 suffers from an unauthenticated XML external entity injection vulnerability.

Apple Security Advisory 2019-7-22-5 – tvOS 12.4 is now available and addresses code execution, cross site scripting, and use-after-free vulnerabilities.

Apple Security Advisory 2019-7-22-1 – iOS 12.4 is now available and addresses code execution, cross site scripting, denial of service, and use-after-free vulnerabilities.

Apple Security Advisory 2019-7-22-3 – Safari 12.1.2 is now available and addresses code execution and cross site scripting vulnerabilities.

Apple Security Advisory 2019-7-22-2 – macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra are now available and address bypass, code execution, and use-after-free vulnerabilities.

Microsoft Windows 7 build 7601 (x86) – Local Privilege Escalation

http://www.vec.go.th/Relaz.html notified by M3sicth

WebKit – Universal Cross-Site Scripting due to Synchronous Page Loads

Ovidentia 8.4.3 – SQL Injection