>> TAG: #0day

Navigate CMS 2.9.4 – Server-Side Request Forgery (SSRF) (Authenticated)

Magento eCommerce CE v2.3.5-p2 – Blind SQLi

Explore CMS 1.0 – SQL Injection

Akka HTTP 10.1.14 – Denial of Service

DLINK DAP-1620 A1 v1.01 – Directory Traversal

Cyclos 4.14.7 – ‘groupId’ DOM Based Cross-Site Scripting (XSS)

PyScript – Read Remote Python Source Code

DLINK DIR850 – Open Redirect

Google Chrome 78.0.3904.70 – Remote Code Execution

Prime95 Version 30.7 build 9 – Remote Code Execution (RCE)