>> CATEGORY: exploit

Siemens SIMATIC S7-1200 CPU suffers from a cross site scripting vulnerability.

Teradek T-RAX version 7.3.2 suffers from a stream disclosure vulnerability in snapshot.cgi.

Teradek Slice version 7.3.15 suffers from a stream disclosure vulnerability in snapshot.cgi.

Teradek VidiU Pro version 3.0.3 suffers from a stream disclosure vulnerability in snapshot.cgi.

FTPShell Server version 6.80 local buffer overflow exploit with SafeSEH bypass.

EasyService Billing version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

QNAP PhotoStation versions prior to 5.x suffer from a cross site scripting vulnerability.

Feedy RSS News Ticker version 2.0 suffers from a remote SQL injection vulnerability.

Qualys performed an extensive audit of procps-ng. They discovered hundreds of bugs and vulnerabilities.

Epic Games Launcher version 7.9.4-4058369 suffers from an insecure file permissions vulnerability.