Eikon Thomson Reuters version 4.0.42144 suffers from a weak permissions issue that can lead to code execution.
>> CATEGORY: exploit
ZTE Mobile Hotspot MS910S version DL_MF910S_CN_EUV1.00.01 suffers from having a hard-coded administrative password, busybox vulnerabilities, and having a known backdoor in the GoAhead webserver.
Ericom Access Server allows attackers to initiate SSRF requests making outbound connections to arbitrary hosts and TCP ports. Attackers, who can reach the AccessNow server can target internal systems that…
LimeSurvey version 4.3.10 suffers from a persistent cross site scripting vulnerability.
A Linux copy-on-write issue can wrongly grant write access.
Chrome suffers from a missing array size check in NewFixedArray.
PNPSCADA version 2.200816204020 suffers from a remote SQL injection vulnerability.
ElkarBackup version 1.3.3 suffers from a persistent cross site scripting vulnerability.
Joomla Adagency component version 6.1.2 suffers from a cross site scripting vulnerability.
WordPress NAB Transact WooCommerce plugin version 2.1.0 suffers from a payment bypass vulnerability.