Apple Security Advisory 2019-8-26-3 – tvOS 12.4.1 is now available and addresses an arbitrary code execution vulnerability.
LSoft ListServ versions prior to 16.5-2018a suffer from a cross site scripting vulnerability.
Realtek Managed Switch Controller RTL83xx suffers from a stack overflow vulnerability. Full exploit provided.
ProGrade/Lierda Grill Temperature version 1.00_50006 suffers from having hard-coded credentials that allow for denial of service and information disclosure attacks.
WordPress UserPro versions 4.9.32 and below suffer from a cross site scripting vulnerability.
Joomla version 1.5.26 with AlphaContent component 3.x suffers from a remote SQL injection vulnerability.
Joomla version 1.5.26 with FireBoard component version 1.1.3 suffers from a remote SQL injection vulnerability.
Joomla version 1.5.26 with OrgChart component version 1.0.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
Joomla version 1.5.26 with EstateAgent component version 3.x suffers from a remote SQL injection vulnerability.
openITCOCKPIT version 3.6.1-2 suffers from a cross site request forgery vulnerability.