vBulletin versions 5.5.4 and below suffers from an updateAvatar remote code execution vulnerability.
>> ARCHIVE: 2019-10
XNU suffers from a remote double-free vulnerability due to a data race in IPComp input path.
Zabbix 4.4 – Authentication Bypass
https://www.ditp.go.th notified by Scrub
freeFTP 1.0.8 – Remote Buffer Overflow
IBM Bigfix Platform 9.5.9.62 – Arbitrary File Upload
Subrion 4.2.1 – ‘Email’ Persistant Cross-Site Scripting
ASX to MP3 converter 3.1.3.7 – ‘.asx’ Local Stack Overflow (DEP)
logrotten 3.15.1 – Privilege Escalation
Zabbix 4.2 – Authentication Bypass