OpenText Extended ECM versions 16.2.2 through 22.3 suffer from arbitrary file deletion, information disclosure, local file inclusion, and privilege escalation vulnerabilities.
>> AUTHOR: deepcore
Patient Record Management System version 1.0 suffers from an authentication bypass vulnerability during account recovery.
Multiple vulnerabilities have been discovered across Common Desktop Environment version 1.6, Motif version 2.1, and X.Org libXpm versions prior to 3.5.15 on Oracle Solaris 10 that can be chained together…
Solaris 10 CDE local privilege escalation exploit that achieves root by injecting a fake printer via lpstat and uses a buffer overflow in libXM ParseColors().
http://www.bnk.go.th/f7xp.html notified by F7 Xpl0it3r
SLIMS version 9.5.2 suffers from a cross site scripting vulnerability.
http://www.sdm.dmr.go.th/b.htm notified by Mr. BDKR28
KesionCMS X version 1.5 suffers from a direct access add administrator vulnerability.
Yazilimi Jettweb Haber version 3 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
xcash version 1.5 appears to leave a default administrative account in place post installation.