FreshRSS 1.11.1 – Cross-Site Scripting
>> TAG: #0day
FreshRSS 1.11.1 – Cross-Site Scripting
Microsoft Lync for Mac 2011 – Injection Forced Browsing/Download
Rockwell Automation Allen-Bradley PowerMonitor 1000 – Incorrect Access Control Authentication Bypass
Xorg X11 Server (AIX) – Local Privilege Escalation
OpenSSH < 7.7 – User Enumeration (2)
Linux/x86 – /usr/bin/head -n99 cat etc/passwd Shellcode (61 Bytes)
Joomla! Component JE Photo Gallery 1.1 – ‘categoryid’ SQL Injection
Mozilla Firefox 63.0.1 – Denial of Service (PoC)
PHP Server Monitor 3.3.1 – Cross-Site Request Forgery
Apache Superset 0.23 – Remote Code Execution