Tag: 0day

[local] AppXSvc – Privilege Escalation

[webapps] Symantec Advanced Secure Gateway (ASG) / ProxySG – Unrestricted File Upload

[webapps] Ticket-Booking 1.4 – Authentication Bypass

[webapps] College-Management-System 1.2 – Authentication Bypass

[dos] Folder Lock 7.7.9 – Denial of Service

[webapps] Dolibarr ERP-CRM 10.0.1 – 'User-Agent' Cross-Site Scripting

[webapps] phpMyAdmin 4.9.0.1 – Cross-Site Request Forgery

[webapps] LimeSurvey 3.17.13 – Cross-Site Scripting

[dos] Microsoft DirectWrite – Invalid Read in SplicePixel While Processing OTF Fonts

[dos] Microsoft DirectWrite – Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts