Open Web Analytics (OWA) versions prior to 1.7.4 allow an unauthenticated remote attacker to obtain sensitive user information, which can be used to gain admin privileges by leveraging cache hashes.
http://naya.go.th/q.txt notified by rizky07
http://www.haec03.doae.go.th/news_file/Mloki.htm notified by Mloki
http://www.royalagro.doae.go.th/knowledge/Mloki.htm notified by Mloki
http://www.edoae.doae.go.th/wp_person/Mloki.htm notified by Mloki
http://www.aopdt09.doae.go.th/wordpress_site18/Mloki.htm notified by Mloki
http://www.ppsf.doae.go.th/wordpress/Mloki.htm notified by Mloki
There is an intra-object overflow in Shannon Baseband, inside the 5G MM protocol implementation (NrmmMsgCodec as it is called in Shannon according to debug strings), specifically when handling the Service…
XNU NFSSVC suffers from root check bypass and use-after-free vulnerabilities due to insufficient locking in upcall worker threads.