Backdoor.Win32.XLog.21 malware suffers from an authentication bypass vulnerability due to a race condition.
>> AUTHOR: deepcore
minewebcms 1.15.2 – Cross-site Scripting (XSS)
Sherpa Connector Service v2020.2.20328.2050 – Unquoted Service Path
qdPM 9.2 – Cross-site Request Forgery (CSRF)
ICEHRM 31.0.0.0S – Cross-site Request Forgery (CSRF) to Account Deletion
Kramer VIAware – Remote Code Execution (RCE) (Root)
KLiK Social Media Website 1.0 – ‘Multiple’ SQLi
Zenario CMS 9.0.54156 – Remote Code Execution (RCE) (Authenticated)
binutils 2.37 – Objdump Segmentation Fault
Opmon 9.11 – Cross-site Scripting