rConfig version 3.9.4 searchField unauthenticated remote root code execution exploit.
>> AUTHOR: deepcore
This Metasploit module exploits some DLINK Access Points that are vulnerable to an authenticated OS command injection. Default credentials for the web interface are admin/admin.
codeBeamer versions 9.5 and below suffer from multiple persistent cross site scripting vulnerabilities.
Micro Focus Vibe version 4.0.6 suffers from an html injection vulnerability.
IBM Cognos TM1 Server / Planning Analytics Server (TM1) suffers from a configuration overwrite vulnerability that can be leveraged to achieve code execution as SYSTEM via TM1 scripting. Extensive research…
Micro Focus Vibe version 4.0.6 suffers from a cross site scripting vulnerability.
Apple Security Advisory 2020-03-25-1 – iCloud for Windows 10.9.3 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
Apple Security Advisory 2020-03-25-2 – iCloud for Windows 7.18 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
https://tsd.m-society.go.th/zx.htm notified by Zarox~Ztayli
http://www.minister.m-society.go.th/zx.htm notified by Zarox~Ztayli