:: Deepquest ::

The TRS web console allows an authenticated user to remotely manage the BTS and its configuration. Analysis discovered an authentication bypass vulnerability in the web management console. BTS TRS web console version FTM_W20_FP2_2019.08.16_0010 is affected.

SIEMENS-SINEMA Remote Connect version 1.0 SP3 HF1 suffers from an open redirection vulnerability.

Apple Security Advisory 2022-02-10-1 – iOS 15.3.1 and iPadOS 15.3.1 addresses code execution and use-after-free vulnerabilities.

Apple Security Advisory 2022-02-10-2 – macOS Monterey 12.2.1 addresses code execution and use-after-free vulnerabilities.

Apple Security Advisory 2022-02-10-3 – Safari 15.3 addresses code execution and use-after-free vulnerabilities.

WordPress versions 5.9 and below suffer from a cross site scripting vulnerability in the author and contributor roles. Per the researcher, WordPress is addressing this in their next release and considers this a medium severity vulnerability.

Cain and Abel version 4.9.56 suffers from an unquoted service path vulnerability.

WordPress Jetpack plugin version 9.1 suffers from a cross site scripting vulnerability.

Tokheim Profleet DiaLOG Fuel Management System version 11.005.02 suffers from a remote SQL injection vulnerability that can allow for remote code execution.