Online Book Store version 1.0 suffers from a remote SQL injection vulnerability. This is a variant of the original vulnerability discovered in August of 2020 by Moaaz Taha.
>> CATEGORY: exploit
Deep Instinct Windows Agent version 1.2.24.0 suffers from an unquoted service path vulnerability.
Joplin version 1.2.6 suffers from a cross site scripting vulnerability.
Privacy Drive version 3.17.0 suffers from an unquoted service path vulnerability.
Turbofan fails to deoptimize code after map deprecation, leading to a type confusion vulnerability.
Chrome on Android suffers from a ConvertToJavaBitmap heap buffer overflow vulnerability.
SmartBlog version 2.0.1 suffers from a remote blind SQL injection vulnerability.
BlogEngine version 3.3.8 suffers from a persistent cross site scripting vulnerability.
Sentrifugo version 3.2 announcements authenticated remote code execution exploit.
Proof of concept git-lfs remote code execution exploit written in Go. Affects Git, GitHub CLI, GitHub Desktop, Visual Studio, GitKraken, SmartGit, SourceTree, and more.