OpenVPN Monitor versions 1.1.3 and below suffer from an injection vulnerability that allows an attacker to inject arbitrary commands into the OpenVPN server management interface socket.
OpenVPN Monitor versions 1.1.3 and below suffer from a cross site request forgery vulnerability that allows an attacker to disconnect arbitrary VPN clients.
Apple Security Advisory 2021-09-23-1 – iOS 12.5.5 addresses code execution, integer overflow, and use-after-free vulnerabilities.
Apple Security Advisory 2021-09-23-2 – Security Update 2021-006 Catalina addresses a code execution vulnerability.
OpenVPN Monitor versions 1.1.3 and below suffer from a cross site request forgery vulnerability that allows an attacker to disconnect arbitrary VPN clients.
http://pymr.go.th/er.php notified by LahBodoAmat
Gurock Testrail version 7.2.0.3014 suffers from an improper access control vulnerability.
Backdrop CMS version 1.20.0 suffers from cross site request forgery vulnerabilities that can assist an attacker in achieving command execution.