>> TAG: #0day

School ERP Pro+Responsive 1.0 – Arbitrary File Download

Modbus Poll 7.2.2 – Denial of Service (PoC)

MySQL Edit Table 1.0 – ‘id’ SQL Injection

School ERP Ultimate 2018 – Arbitrary File Download

AudaCity 2.3 – Denial of Service (PoC)

The Open ISES Project 3.30A – ‘tick_lat’ SQL Injection

Oracle Siebel CRM 8.1.1 – CSV Injection

School ERP Ultimate 2018 – ‘fid’ SQL Injection

Apple iOS – Kernel Stack Memory Disclosure due to Failure to Check copyin Return Value

LibSSH 0.7.6 / 0.8.4 – Unauthorized Access