Piwigo versions 2.9.5 and below suffer from cross site scripting, command execution, and remote SQL injection vulnerabilities.
The RDP termdd.sys driver improperly handles binds to internal-only channel MS_T120, allowing a malformed Disconnect Provider Indication message to cause a use-after-free. With a controllable data/size remote nonpaged pool spray,…
http://smss.chaiyaphum3.go.th/web62/susu.html notified by Mr./Key14
http://www.ksn1.go.th/susu.html notified by Mr./Key14
iMessage – Decoding NSSharedKeyDictionary Can Read Object Out of Bounds
Pfsense 2.3.4 / 2.4.4-p3 – Remote Code Injection
File Sharing Wizard 1.5.0 – POST SEH Overflow
Easy File Sharing Web Server 7.2 – ‘New User’ Local SEH Overflow
Microsoft Windows cryptoapi – SymCrypt Modular Inverse Algorithm Denial of Service