An SQL injection exists in the BlueCube CMS software tienda.php.
eed049d1d22876bf4bb5ca9cdfb77fc459576f645c50986522ae725fba7f04ad
Unreal Tournament v1.3 (build 3601 and 3614) suffer from a directory traversal in the web interface.
17218c9d1f467e7dd29ba5fb2bb0ee6793d87e3757a1e1aff9b2b1d9d7d13482