>> ARCHIVE: 2019-10

Visual Studio Code enables its remote debugger by default when installed.

SugarCRM versions 9.0.1 and below suffer from multiple path traversal vulnerabilities.

SugarCRM versions 9.0.1 and below suffer from multiple PHP code injection vulnerabilities.

SugarCRM versions 9.0.1 and below suffer from multiple php object injection vulnerabilities.

SugarCRM versions 9.0.1 and below suffer from multiple phar deserialization vulnerabilities.

Openfire version 4.4.1 suffers from multiple cross site scripting vulnerabilities.

TP-Link TL-WR1043ND 2 suffers from an authentication bypass vulnerability.

This Metasploit module exploits a stack buffer overflow in ASX to MP3 converter 3.1.3.7. By constructing a specially crafted ASX file and attempting to convert it to an MP3 file…

SMA Solar Technology AG Sunny WebBox device version 1.6 suffers from a cross site request forgery vulnerability.