>> TAG: #0day

iSmartViewPro 1.5 – ‘SavePath for ScreenShots’ Local Buffer Overflow (SEH)

Softneta MedDream PACS Server Premium 6.7.1.1 – Directory Traversal

Jorani Leave Management 0.6.5 – Cross-Site Scripting

Cisco Umbrella Roaming Client 2.0.168 – Privilege Escalation

NovaRad NovaPACS Diagnostics Viewer 8.5 – XML External Entity Injection (File Disclosure)

Jorani Leave Management 0.6.5 – ‘startdate’ SQL Injection

Apache Roller 5.0.3 – XML External Entity Injection (File Disclosure)

FTPShell Server 6.80 – ‘Add Account Name’ Buffer Overflow (SEH)

FUJI XEROX DocuCentre-V 3065 Printer – Remote Command Execution

Tenda ADSL Router D152 – Cross-Site Scripting