PunBB with SQLite appears to store its database within the webroot, allowing it to be retrieved by attackers.
XML Notepad version 2.8.0.4 suffers from an XML external entity injection vulnerability.
iOS IOUSBDeviceFamily version 12.4.1 IOInterruptEventSource heap corruption proof of concept exploit.
iMessage suffers from an issue where decoding NSSharedKeyDictionary can read an ObjC object at attacker controlled address.
An issue exists with Adobe Acrobat Reader DC for Windows use of an uninitialized pointer due to malformed JBIG2Globals stream.
An issue exists where Adobe Acrobat Reader DC for Windows makes use of an uninitialized pointer due to a malformed OTF font (CFF table).
Honeywell MCR Web Controller suffers from cross site scripting and path disclosure vulnerabilities. Versions affected include XL1000C50 EXCEL WEB 52 I/O, XL1000C500 EXCEL WEB 300 I/O, XL1000C100 EXCEL WEB 104…
Eset Mobile Security application for Android version 5.2.18.0 suffers from an application locking bypass vulnerability.
Wondershare Application Framework Service 2.4.3.231 – ‘WsAppService’ Unquote Service Path
eMerge E3 1.00-06 – Unauthenticated Directory Traversal