e107 CMS version 3.2.1 suffers from cross site scripting and arbitrary file upload vulnerabilities that can allow for a shell upload.

Apache CouchDB version 3.2.1 suffers from a remote code execution vulnerability.

Wondershare Dr.Fone version 12.0.7 suffers from a remote privilege escalation vulnerability related to InstallAssistService.

Wondershare Dr.Fone version 12.0.7 suffers from a remote privilege escalation vulnerability related to ElevationService.

ExifTool version 12.23 suffers from an arbitrary code execution vulnerability.

Cyclos version 4.14.7 suffers from multiple cross site scripting vulnerabilities.

DLINK DIR850 suffers from an open redirection vulnerability.

DLINK DIR850 suffers from a configuration disclosure vulnerability.

Wondershare Dr.Fone 11.4.10 suffers from an insecure permissions vulnerability.

SAP BusinessObjects Intelligence version 4.3 suffers from an XML external entity injection vulnerability.