ManageEngine MSPCentral version 9 suffers from cross site request forgery, insecure session cookies, and cross site scripting vulnerabilities.
b983739d5c9e6e3348d2323d71a796d500798b6a460b49fa2b179cee9582484f
Kaseya version 6.2 suffers from a persistent cross site scripting vulnerability.
e0cdd10a64a9373d573938c78e9a4472f9e23fee2043c7bb3d84006bf7352188
Ncentral versions 8.0.x through 8.2.0-1152 suffer from insecure SOAP access that leads to an unprivileged SSH session, poor trust based authentication leading to database compromise, plain text password storage, cross site request forgery, and other vulnerabilities.
464cc00f87dcb32257b52f9b06621fa1f83992f57282764ad08163ff151e2f5f