#windows

IBM TXSeries for Multiplatforms 8.1, 8.2, and 9.1 is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting a slowloris-type attacks, a remote attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 262905.

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e., neither alphanumeric nor underscore), aka a pointer/overflow issue.

This is a Metasploit module for enumerating public Azure services by validating legitimate subdomains through various DNS record queries. This cloud reconnaissance module rapidly identifies API services, storage accounts, key vaults, databases, and more!

BookingWizz version 6.0.1 suffers from an information leakage vulnerability.

E-commerce Growisei CMS version 2.0 appears to leave default credentials installed after installation.

DBCInfoTech CMS version 2.0 suffers from an unauthenticated administrator reinstall vulnerability.

Education Time Indonesian School CRM version 1.7 suffers from a cross site scripting vulnerability.

Eden CMS version 1.02 suffers from a cross site scripting vulnerability.

Ecommerce Responsive version 1.2 suffers from an insecure direct object reference vulnerability.

E-Biz CMS version 2.0 suffers from a cross site request forgery vulnerability.