Protection Licensing Toolkit ReadyAPI version 3.2.5 suffers from an unsafe deserialization vulnerability that allows for remote code execution.
04d24a10d080f67a99623c2a47d1d455
SquirrelMail version 1.4.22 suffers from a cross site scripting vulnerability.
35d36e761a3e0e4a901673fe89e36bff
Coldfusion versions 2016 and 2018 along with all current versions of JNBridge suffer from a remote code execution vulnerability.
f1b8b67bd353230a79828cd27fa10223
This paper presents the "LDAP Swiss Army Knife", an easy to use LDAP server implementation built for penetration oder software testing. Apart from general usage as a server or proxy it also shows some specific attacks against Java/JNDI based LDAP clients.
a5b08197ac7d25c91698564ff5769d7b
Dojo Toolkit version 1.13 suffers from a cross site scripting vulnerability.
32361799fbf94963fe405a9d518c8786
ILIAS versions 5.3.2, 5.2.14, and 5.1.25 suffer from a cross site scripting vulnerability.
e040c53ef97a1cf82b56b47ee94179a8
This advisory discloses a critical severity security vulnerability which was introduced in version 2.3.1 of Bamboo. Versions of Bamboo starting with 2.3.1 before 5.11.4.1 (the fixed version for 5.11.x) and from 5.12.0 before 5.12.3.1 (the fixed version for 5.12.x) are affected by this vulnerability.
22f79e542f62355e4c2c0534dfa98069