|
Magic ISO Maker 5.5(build 281) - 'Serial Code' Denial of Service (PoC)
|
|
2019-04-04
|
|
Cisco RV320 and RV325 - Unauthenticated Remote Code Execution (Metasploit)
|
|
2019-04-03
|
|
Google Chrome 72.0.3626.96 / 74.0.3702.0 - 'JSPromise::TriggerPromiseReactions' Type Confusion
|
|
2019-04-03
|
|
Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 - 'ReadableStream' Internal Object Leak Type Confusion
|
|
2019-04-03
|
|
Google Chrome 72.0.3626.81 - 'V8TrustedTypePolicyOptions::ToImpl' Type Confusion
|
|
2019-04-03
|
|
WebKitGTK+ - 'ThreadedCompositor' Race Condition
|
|
2019-04-03
|
|
WebKit JavaScriptCore - CodeBlock Dangling Watchpoints Use-After-Free
|
|
2019-04-03
|
|
WebKit JavaScriptCore - Out-Of-Bounds Access in FTL JIT due to LICM Moving Array Access Before the Bounds Check
|
|
2019-04-03
|
|
iOS < 12.2 / macOS < 10.14.4 XNU - pidversion Increment During execve is Unsafe
|
|
2019-04-03
|
|
WebKit JavaScriptCore - 'createRegExpMatchesArray' Type Confusion
|
|
2019-04-03
|
|
SpiderMonkey - IonMonkey Compiled Code Fails to Update Inferred Property Types (Type Confusion)
|
|
2019-04-03
|
|
PhreeBooks ERP 5.2.3 - Remote Command Execution
|
|
2019-04-03
|
|
PhreeBooks ERP 5.2.3 - Arbitrary File Upload
|
|
2019-04-03
|
|
Ashop Shopping Cart Software - SQL Injection
|
|
2019-04-03
|
|
Clinic Pro v4 - 'month' SQL Injection
|
|
2019-04-03
|
|
TeemIp IPAM < 2.4.0 - 'new_config' Command Injection (Metasploit)
|
|
2019-04-03
|
|
iScripts ReserveLogic - SQL Injection
|
|
2019-04-03
|
|
AIDA64 Business 5.99.4900 - SEH Buffer Overflow (EggHunter)
|
|
2019-04-03
|
|
phpFileManager 1.7.8 - Local File Inclusion
|
|
2019-04-03
|
|
Fiverr Clone Script 1.2.2 - SQL Injection / Cross-Site Scripting
|
|
2019-04-03
|
|
AIDA64 Extreme Edition 5.99.4800 - Local SEH Buffer Overflow
|
|
2019-04-03
|
|
CMS Made Simple < 2.2.10 - SQL Injection
|
|
2019-04-03
|
|
LimeSurvey < 3.16 - Remote Code Execution
|
|
2019-04-03
|
|
JioFi 4G M2S 1.0.2 - Cross-Site Request Forgery
|
|
2019-04-03
|
|
WordPress Plugin PayPal Checkout Payment Gateway 1.6.8 - Parameter Tampering
|
|
2019-04-03
|
|
Inout RealEstate - 'city' SQL Injection
|
|
2019-04-03
|
|
Inout EasyRooms - SQL Injection
|
|
2019-04-03
|
|
CentOS Web Panel 0.9.8.789 - NameServer Field Persistent Cross-Site Scripting
|
|
2019-04-03
|
|
Oracle Weblogic Server Deserialization RCE - Raw Object (Metasploit)
|
|
2019-04-03
|
|
CMS Made Simple (CMSMS) Showtime2 - File Upload RCE (Metasploit)
|
|
2019-04-03
|
|
gnutls 3.6.6 - 'verify_crt()' Use-After-Free
|
|
2019-04-03
|
|
Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH Egghunter)
|
|
2019-04-03
|
|
Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - 'arac_kategori_id' SQL Injection
|
|
2019-04-03
|
|
BigTree 4.3.4 CMS - Multiple SQL Injection
|
|
2019-04-03
|
|
Job Portal 3.1 - 'job_submit' SQL Injection
|
|
2019-04-03
|
|
Microsoft Visio 2016 16.0.4738.1000 - 'Log in accounts' Denial of Service
|
|
2019-04-03
|
|
i-doit 1.12 - 'qr.php' Cross-Site Scripting
|
|
2019-04-03
|
|
WordPress Plugin Loco Translate 2.2.1 - Local File Inclusion
|
|
2019-04-03
|
|
WordPress Plugin Anti-Malware Security and Brute-Force Firewall 4.18.63 - Local File Inclusion
|
|
2019-04-03
|
|
Fat Free CRM 0.19.0 - HTML Injection
|
|
2019-04-03
|
|
Airbnb Clone Script - Multiple SQL Injection
|
|
2019-04-03
|
|
Thomson Reuters Concourse & Firm Central < 2.13.0097 - Directory Traversal / Local File Inclusion
|
|
2019-04-03
|
|
Jettweb Hazır Rent A Car Scripti V4 - SQL Injection
|
|
2019-04-03
|
|
Spidermonkey - IonMonkey Type Inference is Incorrect for Constructors Entered via OSR
|
|
2019-04-03
|
|
SJS Simple Job Script - SQL Injection / Cross-Site Scripting
|
|
2019-04-03
|
|
Titan FTP Server Version 2019 Build 3505 - Directory Traversal / Local File Inclusion
|
|
2019-04-03
|
|
XooDigital - 'p' SQL Injection
|
|
2019-04-03
|
|
XooGallery - Multiple SQL Injection
|
|
2019-04-03
|
|
Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting
|
|
2019-04-03
|
|
Jettweb Php Hazır İlan Sitesi Scripti V2 - SQL Injection
|
|
2019-04-03
|