IM-Worm.Win32.Bropia.aa malware suffers from an insecure permissions vulnerability.
RemoteClinic version 2.0 suffers from multiple persistent cross site scripting vulnerabilities.
Trojan-Dropper.Win32.Agent.xtp malware suffers from an insecure permissions vulnerability.
Backdoor.Win32.DarkKomet.artr malware suffers from an insecure permissions vulnerability.
OTRS version 6.0.1 remote command execution exploit.
Packed.Win32.Black.d malware has an unauthenticated open proxy vulnerability.
BMD BMDWeb 2.0 versions prior to 24.01.21 suffer from persistent cross site scripting vulnerabilities.
CMS Made Simple 2.2.15 – ‘title’ Cross-Site Scripting (XSS)
OTRS 6.0.1 – Remote Command Execution (2)
Cisco RV-series routers suffer from an authentication bypass vulnerability. The RV34X series are also affected by a command injection vulnerability in the sessionid cookie, when requesting the /upload endpoint. A…