Computrols CBAS 18.0.0 allows Username Enumeration. Date published : 2019-05-24 http://packetstormsecurity.com/files/155266/Computrols-CBAS-Web-19.0.0-Username-Enumeration.html https://applied-risk.com/index.php/download_file/view/196/165
Computrols CBAS 18.0.0 allows Cross-Site Request Forgery. Date published : 2019-05-24 http://packetstormsecurity.com/files/155247/Computrols-CBAS-Web-19.0.0-Cross-Site-Request-Forgery.html https://applied-risk.com/index.php/download_file/view/196/165
A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Heidelberg Prinect Archiver v2013 release 1.0. Date published : 2019-05-24 https://github.com/alt3kx/CVE-2019-10685 https://medium.com/@alt3kx/a-reflected-xss-in-print-archive-system-v2015-release-2-6-cve-2019-10685-b60763b7768b
** DISPUTED ** It was discovered freeradius up to and including version 3.0.19 does not correctly configure logrotate, allowing a local attacker who already has control of the radiusd user to escalate his privileges...
In libwebp 0.5.1, there is a double free bug in libwebpmux. Date published : 2019-05-23 https://bugs.chromium.org/p/webp/issues/detail?id=322
b2evolution 6.7.6 suffer from an Object Injection vulnerability in /htsrv/call_plugin.php. Date published : 2019-05-23 http://www.openwall.com/lists/oss-security/2016/09/30/3 https://github.com/b2evolution/b2evolution/commit/25c21cf9cc4261324001f9039509710b37ee2c4d
Exponent CMS version 2.3.9 suffers from a Object Injection vulnerability in framework/modules/core/controllers/expCatController.php related to change_cats. Date published : 2019-05-23 http://www.openwall.com/lists/oss-security/2016/09/30/5 https://github.com/exponentcms/exponent-cms/commit/fdafb5ec97838e4edbd685f587f28d3174ebb3db
Exponent CMS version 2.3.9 suffers from a sql injection vulnerability in framework/modules/help/controllers/helpController.php. Date published : 2019-05-23 http://www.openwall.com/lists/oss-security/2016/09/30/5 https://github.com/exponentcms/exponent-cms/commit/fdafb5ec97838e4edbd685f587f28d3174ebb3db
asterisk 13.10.0 is affected by: denial of service issues in asterisk. The impact is: cause a denial of service (remote). Date published : 2019-05-23 http://downloads.asterisk.org/pub/security/AST-2016-006.html
Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Cross Site Scripting (XSS). Date published : 2019-05-23 https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html http://open-xchange.com
Open-Xchange GmbH OX App Suite 7.8.3 is affected by: Incorrect Access Control. Date published : 2019-05-23 https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html http://open-xchange.com
Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Content Spoofing. Date published : 2019-05-23 https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html http://open-xchange.com
Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Information Exposure. Date published : 2019-05-23 https://documentation.open-xchange.com/7.8.4/release-notes/release-notes.html http://open-xchange.com
OX Software GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). Date published : 2019-05-23 https://documentation.open-xchange.com/components/releasenotes/7.8.3/ http://ox.com