PTC ThingWorx suffers from cross site scripting and password disclosure vulnerabilities. Versions affected include 6.5 through 7.4, 8.0.x, 8.1.x, and 8.2.x.
317f2e2b6aaec261a18c273b5fe9dec4ba8d2ee4aba58d901e630188c8d8b97f
Progress Kendo UI Editor version 2018.1.221 suffers from a persistent cross site scripting vulnerability.
635dd00f814500a20fbba041a4fa05e33c59282c7a7c1cf98dcbb1c9b0c6e85a