ActiveFax Server version 6.92 Build 0316 suffers from an ActiveFaxServiceNT unquoted service path vulnerability.
>> AUTHOR: deepcore
Bolt CMS version 3.6.10 suffers from a cross site request forgery vulnerability.
http://wangyai.sec40.go.th notified by XnonGermx
http://web.namnaohospital.go.th notified by XnonGermx
CyberArk Password Vault 10.6 – Authentication Bypass
Accounts Accounting 7.02 – Persistent Cross-Site Scripting
Lavasoft 2.3.4.7 – ‘LavasoftTcpService’ Unquoted Service Path
X.Org X Server 1.20.4 – Local Stack Overflow
Zilab Remote Console Server 3.2.9 – ‘zrcs’ Unquoted Service Path
LiteManager 4.5.0 – ‘romservice’ Unquoted Serive Path