Revive Adserver versions 5.0.5 and below suffer from persistent and reflective cross site scripting and open redirection vulnerabilities.
>> ARCHIVE: 2021-01
Collabtive version 3.1 suffers from a persistent cross site scripting vulnerability.
Backdoor.Win32.Kraimer.11 malware has a backdoor on TCP/6668 that does not require any authentication.
Backdoor.Win32.Noknok.60 malware suffers from an insecure permissions vulnerability.
CASAP Automated Enrollment System version 1.0 suffers from a persistent cross site scripting vulnerability.
CASAP Automated Enrollment System version 1.0 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version is attributed to Richard Jones.
Backdoor.Win32.Noknok.50 malware suffers from an insecure permissions vulnerability.
Backdoor.Win32.Jokerdoor malware suffers from an insecure permissions vulnerability.
Library System version 1.0 suffers from a remote SQL injection vulnerability.
Trojan.Win32.Xocry.ff malware suffers from an insecure permissions vulnerability.