>> CATEGORY: Security

IBM Aspera Faspex 4.4.1 – YAML deserialization (RCE)

ChurchCRM 4.5.1 – Authenticated SQL Injection

NotrinosERP 0.7 – Authenticated Blind SQL Injection

Schneider Electric v1.0 – Directory traversal & Broken Authentication

Franklin Fueling Systems TS-550 – Exploit and Default Password

Rukovoditel 3.3.1 – Remote Code Execution (RCE)

Snitz Forum v1.0 – Blind SQL Injection

Docker based datastores for IBM Instana 241-2 243-0 – No Authentication

Wondershare Dr Fone 12.9.6 – Privilege Escalation

Osprey Pump Controller 1.0.1 – Cross-Site Request Forgery