PHP MySQLi Database Class version 2.9.2 which is from joshcam suffers from a remote SQL injection vulnerability.
41d59cdaedac2dc9e4d131d36d6010fd6cedd3966e394d15e6c5eaacbc13c6c0
Aspose.ZIP for .NET was vulnerable to path traversal that allowed an attacker overwriting arbitrary file in a context of running application. The issue was fixed in version 19.1.0.
31da380d7683b8a4824fe47f9bc31ab3816251626abfdac05f7a4da39a2d3275