Tableau Server versions 2019.4-2019.4.17, 2020.1-2020.1.13, 2020.2-2020.2.10, 2020.3-2020.3.6, and 2020.4-2020.4.2 suffer from an open redirection vulnerability.
http://www.nongian.go.th/e0f.txt notified by Xyp3r2667
https://www.bangwuakanarak.go.th/e0f.txt notified by Xyp3r2667
PrestaShop 1.7.6.7 – ‘location’ Blind Sql Injection
An out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Insufficient data validation in V8 in Google Chrome versions prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Atlassian Jira Service Desk version 4.9.1 suffers from a cross site scripting vulnerability via a file upload.
Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities. An unauthenticated remote attacker could potentially exploit these vulnerabilities by sending a crafted Web API…
Composr CMS version 10.0.36 suffers from a cross site scripting vulnerability.
Ignition versions prior to 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is…