The NTFS driver supports a new FS control code to set a mount point which the existing sandbox mitigation doesn’t support allowing a sandboxed application to set an arbitrary mount…
http://www.djop.go.th/asifa.html notified by ./Mar22
This Metasploit module exploits Pulse Secure SSL VPN versions 8.1R15.1, 8.2, 8.3, and 9.0 which suffer from an arbitrary file disclosure vulnerability.
Zoho Corporation ManageEngine ServiceDesk Plus 10 versions prior to 10509 suffer from an information leakage vulnerability.
KBPublisher version 6.0.2.1 suffers from multiple remote SQL injection vulnerabilities.
Nimble Streamer 3.0.2-2 < 3.5.4-9 – Directory Traversal
http://secondary33.go.th/m-1.gif notified by moncet
http://webapp.udoncity.go.th/tmp/uwu.html notified by Odiq
Microsoft Office365 and ProPlus build 16.0.11901.20204 suffers from code execution and protection bypass vulnerabilities.