OpenCats version 0.9.4-2 suffers from an XML external entity injection vulnerability.
>> AUTHOR: deepcore
Chrome suffers from a HRTFDatabaseLoader::WaitForLoaderThreadCompletion data race condition.
WordPress Plugin 3DPrint Lite 1.9.1.4 – Arbitrary File Upload
Budget and Expense Tracker System 1.0 – Arbitrary File Upload
Backdrop CMS 1.20.0 – ‘Multiple’ Cross-Site Request Forgery (CSRF)
WordPress Plugin Advanced Order Export For WooCommerce 3.1.7 – Reflected Cross-Site Scripting (XSS)
WordPress Plugin Fitness Calculators 1.9.5 – Cross-Site Request Forgery (CSRF)
Police Crime Record Management Project 1.0 – Time Based SQLi
Gurock Testrail 7.2.0.3014 – ‘files.md5’ Improper Access Control
Redragon Gaming Mouse – ‘REDRAGON_MOUSE.sys’ Denial-Of-Service (PoC)