Backdoor.Win32.Redkod.d malware suffers from a hardcoded credential vulnerability.
WiFi File Transfer version 1.0.8 suffers from a cross site scripting vulnerability.
MiniDVBLinux version 5.4 suffers from an OS command execution vulnerability. This can be exploited to execute arbitrary commands as root through the command GET parameter in /tpl/commands.sh.
WordPress Photo Gallery plugin version 1.8.0 suffers from a cross site scripting vulnerability.
MiniDVBLinux versions 5.4 and below suffer from an arbitrary file disclosure vulnerability.
Apple Security Advisory 2022-10-10-1 – iOS 16.0.3 addresses a denial of service vulnerability.
Apple Music Android Application versions 3.8.0 through 3.10.2 suffer from a man-in-the-middle vulnerability.
WordPress Plugin ImageMagick-Engine 1.7.4 – Remote Code Execution (RCE) (Authenticated)
http://kaokum.go.th/m6.htm notified by magelang6etar
http://wianglocal.go.th/m6.htm notified by magelang6etar