Apple Security Advisory 2020-1-28-1 – iOS 13.3.1 and iPadOS 13.3.1 are now available and address code execution vulnerabilities.
>> AUTHOR: deepcore
Fifthplay S.A.M.I suffers from cross site request forgery and persistent cross site scripting vulnerabilities.
Qualys discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This vulnerability is exploitable since May 2018 (commit a8e222352f, “switch smtpd to new grammar”) and allows an attacker to execute arbitrary…
OpenSMTPD 6.6.2 – Remote Code Execution
rConfig 3.9.3 – Authenticated Remote Code Execution
Torrent 3GP Converter version 1.51 suffers from a stack overflow vulnerability.
This application, known as the SolarWinds n-Central Dumpster Diver, utilizes the nCentral agent dot net libraries to simulate the agent registration and pull the agent/appliance configuration settings. This information can…
FusionAuth versions 1.10 and below suffer from a remote command execution vulnerability. An authenticated attacker with enough privileges to access the template editing functions (either site templates or e-mail templates)…
IceWarp WebMail versions 11.4.4.1 and below suffer from a cross site scripting vulnerability.
macOS and iOS suffers from an ImageIO heap corruption vulnerability when processing malformed TIFF images.