Projeqtor up to v11.2.0 has an SQL injection vulnerability via the component /view/criticalResourceExport.php that leads to privilege escalation and RCE

Projeqtor up to v11.2.0 was discovered to contain a remote code execution vulnerability via the component /view/print.php.

An issue in dom96 HTTPbeast v.0.4.1 and before allows a remote attacker to send a malicious crafted request due to insufficient parsing in the parser.nim component.

Http request smuggling issue in Jester v.0.6.0 and before allows a remote attacker to send a malicious crafted request.