>> ARCHIVE: 2020-03

SialWeb CMS eCommerce versions 1.0 and 1.1 suffer from cross site scripting and remote SQL injection vulnerabilities.

Joomla GMapFP component version 3.30 suffers from an arbitrary file upload vulnerability.

AVAST SecureLine version 5.5.522.0 suffers from a SecureLine unquoted service path vulnerability.

Android suffers from a bluetooth remote denial of service vulnerability.

HP ThinPro versions 7.1, 7.0, 6.2.1, and 6.2 suffer from a local physical access information disclosure vulnerability.

10-Strike Network Inventory Explorer version 8.54 suffers from a srvInventoryWebServer unquoted service path vulnerability.

HP ThinPro versions 7.1, 7.0, 6.2.1, and 6.2 suffer from an application filter bypass vulnerability.

HP ThinPro versions 7.1, 7.0, 6.2.1, and 6.2 suffer from a local privilege escalation vulnerability.

10-Strike Network Inventory Explorer version 8.54 suffers from a buffer overflow vulnerability.

LeptonCMS version 4.5.0 suffers from a persistent cross site scripting vulnerability.