BMC Smart Reporting version 7.3 20180418 suffers from an XML external entity injection vulnerability.
>> ARCHIVE: 2019-12
Microsoft Windows Media Center suffers from an XML external entity injection vulnerability. This vulnerability was originally released back on December 4, 2016, yet remains unfixed.
WordPress CSS Hero plugin versions 4.0.3 and below suffer from a cross site scripting vulnerability.
Revive Adserver version 4.2 suffers from a code execution vulnerability.
SSDWLAB version 6.1 suffers from an authentication bypass vulnerability.
Fronius Solar Inverter Series with software versions below 3.14.1 (HM 1.12.1) suffer from unencrypted communication and path traversal vulnerabilities.
YouPHPTube versions 7.7 and below suffer from a remote SQL injection vulnerability in getChat.json.php.
Broadcom CA Privilged Access Manager 2.8.2 – Remote Command Execution
Amiti Antivirus 25.0.640 – Unquoted Service Path
NETGATE Data Backup 3.0.620 – ‘NGDatBckpSrv’ Unquoted Service Path