Microsoft Outlook Web Access version 14.3.224.2 remote host header injection exploit.
DASAN Zhone ZNID GPON 2426A EU – Multiple Cross-Site Scripting
WordPress Plugin Download Manager 2.9.93 – Cross-Site Scripting
Confluence Server versions 6.1.0 up to 6.6.16, 6.7.0 up to 6.13.7, and 6.14.0 up to 6.15.8 suffer from a file disclosure vulnerability.
Cisco (Titsco) Email Security Appliance (IronPort) C160 suffers from a host header injection vulnerability.
Craft CMS versions 2.7.9 and 3.2.5 suffers from an information disclosure vulnerability.
ChaosPro version 2.0 SEH buffer overflow exploit.
ChaosPro version 2.1 SEH buffer overflow exploit.
ChaosPro version 3.1 SEH buffer overflow exploit.
Kaseya VSA Agent versions 9.5 and below suffer from a privilege escalation vulnerability.