The hardened VirtualBox process on a Windows host does not secure its COM interface leading to arbitrary code injection and elevation of privilege.
>> AUTHOR: deepcore
In WinRAR versions prior to and including 5.61, there is path traversal vulnerability when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated…
https://envocc.ddc.moph.go.th//xampp/lang.tmp notified by ATSIZ
HeidiSQL 10.1.0.5464 – Denial of Service (PoC)
Backup Key Recovery 2.2.4 – Denial of Service (PoC)
JioFi 4G M2S 1.0.2 – ‘mask’ Cross-Site Scripting
JioFi 4G M2S 1.0.2 – Denial of Service
osTicket 1.11 – Cross-Site Scripting / Local File Inclusion
AnMing MP3 CD Burner 2.0 – Denial of Service (PoC)
Lavavo CD Ripper 4.20 – ‘License Activation Name’ Buffer Overflow (SEH)