>> CATEGORY: Security

ManageEngine Network Configuration Manager 12.2 – ‘apiKey’ SQL Injection

NEOWISE CARBONFTP 1.4 – Weak Password Encryption

Easy XML Editor 1.7.8 – XML External Entity Injection

Adive Framework 2.0.8 – Persistent Cross-Site Scripting

Sysax Multi Server 5.50 – Denial of Service (PoC)

Centreon 19.04 – Authenticated Remote Code Execution (Metasploit)

Torrent FLV Converter 1.51 Build 117 – Stack Oveflow (SEH partial overwrite)

APKF Product Key Finder 2.5.8.0 – ‘Name’ Denial of Service (PoC)

WordPress Plugin InfiniteWP Client 1.9.4.5 – Authentication Bypass

Trend Micro Maximum Security 2019 – Arbitrary Code Execution