Rukovoditel ERP and CRM version 2.4.1 suffers from a cross site scripting vulnerability.
XooGallery suffers from multiple remote SQL injection vulnerabilities.
XooDigital suffers from a remote SQL injection vulnerability.
Firefox versions prior to 66.0.1 suffer from an Array.prototype.slice buffer overflow vulnerability.
Jettweb Hazir Rent A Car Scripti version 4 suffers from a remote SQL injection vulnerability.
Joomla ARI Image Slider component version 2.2.0 suffers from cross site request forgery and remote shell upload vulnerabilities.
RedTeam Pentesting discovered that the configuration of a Cisco RV320 router can still be exported without authentication via the device’s web interface due to an inadequate fix by the vendor.
RedTeam Pentesting discovered that the Cisco RV320 router still exposes sensitive diagnostic data without authentication via the device’s web interface due to an inadequate fix by the vendor.
RedTeam Pentesting discovered a command injection vulnerability in the web-based certificate generator feature of the Cisco RV320 router which was inadequately patched by the vendor.
Fat Free CRM version 0.19.0 suffers from an html injection vulnerability.