RWS WorldServer 11.7.3 - Session Token Enumeration

STARFACE 7.3.0.10 - Authentication with Password Hash Possible

Pydio Cells 4.1.2 - Server-Side Request Forgery

Pydio Cells 4.1.2 - Cross-Site Scripting (XSS) via File Download

Pydio Cells 4.1.2 - Unauthorised Role Assignments

Secure Web Gateway 10.2.11 - Cross-Site Scripting (XSS)

ZKTeco ZEM/ZMM 8.88 - Missing Authentication

Creston Web Interface 1.0.0.2159 - Credential Disclosure

Auerswald COMpact 8.0B - Multiple Backdoors

Auerswald COMpact 8.0B - Arbitrary File Disclosure

Auerswald COMpact 8.0B - Privilege Escalation

Auerswald COMfortel 2.8F - Authentication Bypass

myfactory FMS 7.1-911 - 'Multiple' Reflected Cross-Site Scripting (XSS)

Altova MobileTogether Server 7.3 - XML External Entity Injection (XXE)

FRITZ!Box 7.20 - DNS Rebinding Protection Bypass

BigBlueButton 2.2.25 - Arbitrary File Disclosure and Server-Side Request Forgery