HashiCorp Vault’s GCP authentication method can be bypassed on gce type roles that do not specify bound_service_accounts. Vault does not enforce that the compute_engine data in a signed JWT token…
>> AUTHOR: deepcore
http://www.klonghok.go.th notified by Tev3R
Textpattern CMS 4.6.2 – ‘body’ Persistent Cross-Site Scripting
BACnet Test Server 1.01 – Remote Denial of Service (PoC)
SpamTitan version 7.07 suffers from an unauthenticated remote code execution vulnerability in snmp-x.php.
Restaurant Reservation System version 1.0 suffers from an authenticated remote SQL injection vulnerability.
Karel IP Phone IP1211 Web Management Panel – Directory Traversal
EasyPMS 1.0.0 – Authentication Bypass
MOVEit Transfer 11.1.1 – ‘token’ Unauthenticated SQL Injection