>> CATEGORY: Security

Apache 2.4.17 < 2.4.38 – 'apache2ctl graceful' 'logrotate' Local Privilege Escalation

Manage Engine ServiceDesk Plus 9.3 – Privilege Escalation

AIDA64 Extreme 5.99.4900 – ‘Logging’ SEH Buffer Overflow

WordPress Plugin Contact Form Maker 1.13.1 – Cross-Site Request Forgery

WordPress 5.0.0 – Crop-image Shell Upload (Metasploit)

Magic ISO Maker 5.5(build 281) – ‘Serial Code’ Denial of Service (PoC)

AIDA64 Engineer 5.99.4900 – ‘Load from file’ Field Buffer Overflow (SEH)

FreeSMS 2.1.2 – SQL Injection (Authentication Bypass)

Google Chrome 72.0.3626.96 / 74.0.3702.0 – ‘JSPromise::TriggerPromiseReactions’ Type Confusion

WebKit JavaScriptCore – ‘createRegExpMatchesArray’ Type Confusion