Author: deepcore

[webapps] Palo Alto Cortex XSOAR 6.5.0 – Stored Cross-Site Scripting (XSS)

[webapps] Joomla! v4.2.8 – Unauthenticated information disclosure

[webapps] Symantec Messaging Gateway 10.7.4 – Stored Cross-Site Scripting (XSS)

[local] ActFax 10.10 – Unquoted Path Services

[local] Stonesoft VPN Client 6.2.0 / 6.8.0 – Local Privilege Escalation

[webapps] Restaurant Management System 1.0 – SQL Injection

[webapps] Suprema BioStar 2 v2.8.16 – SQL Injection

[webapps] pfsenseCE v2.6.0 – Anti-brute force protection bypass

[webapps] Goanywhere Encryption helper 7.1.1 – Remote Code Execution (RCE)

[dos] FortiRecorder 6.4.3 – Denial of Service