Oracle Mojarra JSF included in Java EE 7 and Eclipse Mojarra JSF versions 2.2 and 2.3 suffer from a cross site scripting vulnerability.
>> AUTHOR: deepcore
Hospital-Management version 1.26 suffers from a remote SQL injection vulnerability.
Western Digital My Book World II NAS 1.02.12 – Authentication Bypass / Command Execution
GOautodial 4.0 – ‘CreateEvent’ Persistent Cross-Site Scripting
http://www.elum.go.th/jp.htm notified by Moeslim
http://amnatpao.go.th notified by Scrub
http://keelek-phatumrat.go.th notified by Scrub
Microsoft Windows suffers from an Internet Settings misconfiguration security feature bypass vulnerability. Versions affected include Windows 7 SP1, 8.0, 8.1 x86 and x64 with full patches up to July 2019.
V8 map migration does not respect element kind, leading to a type confusion vulnerability.
Google Chrome suffers from an issue where it will leak all passwords for a given domain.