VMware VeloCloud versions 3.3.0 and 3.2.2 suffer from an authorization bypass vulnerability.
>> CATEGORY: exploit
WordPress Popup Builder plugin version 3.49 suffers from a persistent cross site scripting vulnerability.
VIM version 8.1.2135 suffers from a heap use-after-free vulnerability using freed memory with autocmd.
ThinVNC version 1.0b1 suffers from an authentication bypass vulnerability.
Restaurant Management System version 1.0 suffers from a remote shell upload vulnerability.
Zilab Remote Console Server version 3.2.9 suffers from a zrcs unquoted service path vulnerability.
Lavasoft version 2.3.4.7 suffers from a LavasoftTcpService unquoted service path vulnerability.
Whatsapp version 2.19.216 suffers from a remote code execution vulnerability.
X.Org X Server version 1.20.4 suffers from a local stack overflow vulnerability.
Tomedo Server version 1.7.3 suffers from using weak cryptography for passwords and cleartext transmission of sensitive information vulnerabilities.