Details:

Zhengzhou Langchuang Culture Communication Co., Ltd., which is a domestic specialist network marketing service provider focused on seo marketing, sem marketing and social media marketing, is affiliated to Langchuang Network Marketing. 

There…

 

Details:

Sudo is a Unix-like system program that helps users to execute commands in a protected manner with unique permissions. In versions of sudo prior to 1.9.5, there are security bugs. Sudoedit may be used by attackers to alter the ownership of arbitrary…

 

Details:

Ethereum Aleth is an Ethereum community customer program built on the C++ language that follows the Ethereum protocol. 

Version <=1.8.0 of the Aleth Ethereum C++ client has a service denial flaw. The weakness originates in the config.json file…

 

Details:

OFCMS is a Java version of the CMS framework, a Java technology-based content management system. 

OFCMS has a vulnerability to XSS. This vulnerability can be exploited by attackers to access personal information, such as user cookies.

 

References:…

 

Details:

Espressif ESP-IDF is a development platform developed by Espressif for the Internet of Things. There is a buffer error flaw in Espressif ESP-IDF, which can be abused by attackers to crash applications. The following products and versions are…

 

Details:

SaferVPN SaferVPN, a VPN alternative, is SaferVPN. SaferVPN 5.0.3.3 to 5.0.4.15 has security bugs that attackers can manipulate to improve their privileges.

 

Affected Versions:

5.0.3.3 to 5.0.4.15

 

References:

https://vimeo.com/459654003…

 

Details:

Qiyou E-sports Accelerator is an e-sports-level online competitive gaming accelerator. 

There is a DLL hijacking flaw in the Unusual Games E-sports accelerator (Windows client). Attackers are able to run malicious code exploiting this loophole.…

 

Details:

 

Zhejiang Lande Network Technology Co., Ltd.'s business scope covers: computer applications, network technology and product creation, professional services, incorporation of computer systems, and technical services for intelligent building…

 

Details:

Catfish CMS is a PHP content management framework which is free and open source. 

CatfishCMS has a weakness for file transfer, which can be used to access server access permissions by attackers.

 

References:

http://www.catfish-cms.com/

 

 

Details:

Mblog is an open source and free blog system built in the Java language, using spring-boot, jpa, shiro, bootstrap and other common frameworks to support the mysql/h2 database. 

The Mblog open source Java blog framework has a weakness with a…

 

Details:

Vientiane Site Management is a management platform suitable for Internet cafe owners developed by Vientiane. 

There is a DLL hijacking flaw in the improved version of Vientiane Network Management 2008. This vulnerability can be used by attackers…

 

Details:

PDF cat split and merge software is a software that merges PDF files.
A dll hijacking vulnerability is available for the PDF cat break and merge applications. This vulnerability can be exploited by attackers to load the dll without signature…