Carlo Gavazzi SmartHouse version 6.5.33 suffers from cross site request forgery along with both reflective and persistent cross site scripting vulnerabilities.
4853055373917d744c7670ff8d4660feef8574919a15a2e1d5777cca98ae1825
Microsoft Excel 2016 version 1901 suffers from an XML external entity injection vulnerability.
e44c33d8e03b25f973e061cc13989210104717a2cc6f7198f78cc1802ddf7ede
Max Secure Anti Virus Plus version 19.0.4.020 suffers from an insecure permission vulnerability.
76f4e179622075025b7eb99563a43f43d4f74eb445470abbb8a207a9f416a093
NAPC Xinet (interface) Elegant 6 Asset Library version 6.1.655 allows pre-authentication error-based SQL injection via the /elegant6/login LoginForm[username] field when double quotes are used.
861555c2816d3e8545ed29c5458dbc9afd6526714f4d2b3d853f8b78e2022d5d
Allied Telesis AT-GS950/8 up until firmware AT-S107 version 1.1.3 [1.00.047] suffers from a directory traversal vulnerability.
422b9c7ed7d41d2043906b03440133f19f70b9d3ce5345d8615b0e80edadfe03
Inateck BCST-60 Barcode Scanner suffers from a keystroke injection vulnerability.
c50880f8974ac7beaee4a55dd46fc351b8ac265c434798d48f41fea5ac5aea77