SALTO ProAccess SPACE versions 5.5 and below suffer from path traversal, arbitrary file write, persistent cross site scripting, privilege escalation, and clear text transmission of sensitive data vulnerabilities.
>> AUTHOR: deepcore
http://www.silalang.go.th/o.htm notified by chinafans
Online Invoicing System 2.6 – ‘description’ Persistent Cross-Site Scripting
Intelbras Router RF1200 1.1.3 – Cross-Site Request Forgery
http://ncd.ddc.moph.go.th notified by Zeerx7
Nsauditor 3.1.8.0 – ‘Name’ Denial of Service (PoC)
Anviz CrossChex 4.3.12 – Local Buffer Overflow
SmartHouse Webapp 6.5.33 – Cross-Site Request Forgery
Visual Studio 2008 – XML External Entity Injection
Dokuwiki 2018-04-22b – Username Enumeration