Nextcloud 17 – Cross-Site Request Forgery
>> AUTHOR: deepcore
Nextcloud 17 – Cross-Site Request Forgery
http://moonbon.rid.go.th notified by Z3z3-HaCkEr
http://lumchae-omp.rid.go.th notified by Z3z3-HaCkEr
Wacom WTabletService version 6.6.7-3 suffers from a WTabletServicePro unquoted service path vulnerability.
QNAP NetBak Replicator version 4.5.6.0607 suffers from a QVssService unquoted service path vulnerability.
Parallels Plesk Panel version 9.5 suffers from a cross site scripting vulnerability.
Smartwares HOME Easy versions 1.0.9 and below suffer from a client-side authentication bypass vulnerability.
Smartwares HOME Easy versions 1.0.9 and below suffer from a database backup information disclosure vulnerability.
Adaware Web Companion version 4.8.2078.3950 – ‘WCAssistantService’ Unquoted Service Path
thejshen Globitek CMS version 1.4 suffers from a remote SQL injection vulnerability.