CERT Poland has received a report about three vulnerabilities (from CVE-2024-1604 to CVE-2024-1606) found in BMC Control-M software.

RCE (Remote Code Execution) vulnerability has been found in the Laragon open source software (CVE-2024-0864).

CERT Poland has received a report about three vulnerabilities (CVE-2023-4537, CVE-2023-4538, CVE-2023-4539) found in Comarch ERP XL software.

CERT Poland has received a report about using hard-coded credentials in iZZi connect application and assigned it the number CVE-2024-0390.

CERT Poland has received a report about 5 vulnerabilities found in PAX POS (Point Of Sale) devices.

10 vulnerabilities (from CVE-2023-49253 to CVE-2023-49262) has been found in Hongdian Router H8951-4G-ESP software.

Stored XSS vulnerability (CVE-2023-5118) has been found in Kofax Capture software.

A vulnerability has been found in the TCExam open source software (CVE-2023-6554).

An open redirect vulnerability has been found in the TasmoAdmin open source software (CVE-2023-6552).

CERT Poland has received a report about a SQL injection vulnerability in the PrestaShop Google Integrator software and assigned it the number CVE-2023-6921.