-
Apple Mail.app does not store S/MIME encrypted emails securely in the Drafts directory on server.
-
OpenX 2.6.4 was found vulnerable to multiple vulnerabilities, most notably SQL injection and Cross Site Scripting security flaws.
-
Profense 2.4 was found vulnerable to multiple security issues: a bypass in the positive model and one in the negative model, as well as a static / default password in the administrative interface.
-
Attackers can use a stored cross site scripting flaw within the dotDefender to control the WAF remotely.