There is a vulnerability in jscript9 that could be potentially used by an attacker to execute arbitrary code when viewing an attacker-controlled website in Internet Explorer. The vulnerability has been…
http://www.phafaek.go.th notified by Fallag GTX
Chamilo LMS 1.11.14 – Remote Code Execution (Authenticated)
Podcast Generator 3.1 – ‘Long Description’ Persistent Cross-Site Scripting (XSS)
Student Management System 1.0 – ‘message’ Persistent Cross-Site Scripting (Authenticated)
Hexagon G!nius Auskunftsportal versions prior to 5.0.0.0 suffer from a remote SQL injection vulnerability.
Customer Relationship Management (CRM) System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Customer Relationship Management (CRM) System version 1.0 suffers from a persistent cross site scripting vulnerability.
Customer Relationship Management (CRM) System version 1.0 suffers from a remote shell upload vulnerability.
Odoo version 12.0.20190101 suffers from an unquoted service path vulnerability.