WordPress DingTalk theme version LTS 4.6 suffers from an open redirection vulnerability.
>> CATEGORY: exploit
WordPress LaneMotorSport Responsive theme version 1.8.4 suffers from an open redirection vulnerability.
Joomla Attachments component version 3.x suffers from a remote file upload vulnerability.
MacOS X versions 10.14.5 and below suffer from a Gatekeeper bypass vulnerability.
Deltek Maconomy version 2.2.5 suffers from a local file inclusion vulnerability.
Kanboard version 1.2.7 suffers from a cross site scripting vulnerability.
Typora version 0.9.9.24.6 suffers from a directory traversal vulnerability.
Spidermonkey IonMonkey can, during a bailout, leak an internal JS_OPTIMIZED_OUT magic value to the running script. This magic value can then be used to achieve memory corruption.
EquityPandit version 1.0 suffers from a password disclosure vulnerability.
Petraware pTransformer ADC versions prior to 2.1.7.22827 suffer from a remote SQL injection vulnerability that allows for login bypass.