>> CATEGORY: Security

Adobe Connect 11.4.5 – Local File Disclosure

Altenergy Power Control Software C1.2.5 – OS command injection

Google Chrome 109.0.5414.74 – Code Execution via missing lib file (Ubuntu)

Icinga Web 2.10 – Arbitrary File Disclosure

ENTAB ERP 1.0 – Username PII leak

Lucee Scheduled Job v1.0 – Command Execution

X2CRM v6.6/6.9 – Reflected Cross-Site Scripting (XSS) (Authenticated)

X2CRM v6.6/6.9 – Stored Cross-Site Scripting (XSS) (Authenticated)

Microsoft Windows 11 – ‘cmd.exe’ Denial of Service

ZCBS/ZBBS/ZPBS v4.14k – Reflected Cross-Site Scripting (XSS)