Node version 14.11.0 is vulnerable to a use-after-free bug in its TLS implementation.
This Metasploit module exploits an improper input sanitization in SpamTitan versions 7.01, 7.02, 7.03 and 7.07 to inject command directives into the SNMP configuration file and get remote code execution…
PaperStream IP (TWAIN) 1.42.0.5685 – Local Privilege Escalation
WinAVR Version 20100110 – Insecure Folder Permissions
Newgen Correspondence Management System (corms) eGov 12.0 – IDOR
Advanced Webhost Billing System 3.7.0 – Cross-Site Request Forgery (CSRF)
WordPress Plugin WP24 Domain Check 1.6.2 – ‘fieldnameDomain’ Stored Cross Site Scripting
Responsive E-Learning System 1.0 – Stored Cross Site Scripting
Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE
Expense Tracker 1.0 – ‘Expense Name’ Stored Cross-Site Scripting