Alkacon OpenCMS version 10.5.4 suffers from a CSV injection vulnerability.
fc338d8e5cb8a714d217de7750d266ef
An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially resulting in remote code execution. An attacker can send a malicious SQL command to trigger this vulnerability.
8cdfd1fce6cfdfb6ee70e78dd233c8b8
Alkacon OpenCMS version 10.5.4 suffers from a cross site scripting vulnerability.
8423f5be143ff3aca2de21f70e1be716
The ROOTCON 13 Call For Papers has been announced. It will be held September 25th through the 27th, 2019 at the Taal Vista Hotel, Tagaytay, Philippines.
d347194b8b8cbd09d5e5bba0ff7ee29f
OpenProject versions 5.0.0 through 8.3.1 suffer from a remote SQL injection vulnerability.
b1d368b6045a9b92c1d58a446f447422
Chrome V8 has an issue where JSCallReducer::ReduceArrayIndexOfIncludes in turbofan fails to insert Map checks.
c3cedb648ac563ef9c4a151be439bf86
CyberArk Enterprise Password Vault versions 10.7 and below suffer from an XML external entity injection vulnerability.
2fcef14fc23d98113b12f2f58e26f8ef
PHPRunner version 10.1 denial of service proof of concept exploit.
bedb62bb205fd142da3925bf7ad3cbc4
ASPRunner.NET version 10.1 denial of service proof of concept exploit.
8ba6e1f76ec71e5f7a22d6056da5ca6f
SpotPaltalk version 1.1.5 denial of service proof of concept exploit.
ada11719de2ceaf0113cb48f95e3a6f0
jetCast Server version 2.0 denial of service proof of concept exploit.
4a5b1defc2b6b2b48c650d6fb01d2ad1
Convert Video jetAudio version 8.1.7 denial of service proof of concept exploit.
197ecaf318bf16a3567905ccb215ccf7
Debian Linux Security Advisory 4441-1 - Multiple vulnerabilities were discovered in the Symfony PHP framework which could lead to cache bypass, authentication bypass, information disclosure, open redirect, cross-site request forgery, deletion of arbitrary files, or arbitrary code execution.
3994cc57d484b31139739cf58d57a4a5
TheHive Project Cortex versions 2.1.3 and below suffer from a server-side request forgery vulnerability.
a70988160dd0b438382262815f9829c5
Symphony Project sfDoctrinesfPropel version 1.x suffers from a database password disclosure.
9a8a06f446c1fb4b7fb55cdd08815a33
SpotIM version 2.2 denial of service proof of concept exploit.
e00d56659cc1b271c52df57fe932349c