WebKit suffers from an out-of-bounds read in WebCore::SimpleLineLayout::RunResolver::runForPoint.
Source: Webkit WebCore::SimpleLineLayout::RunResolver::runForPoint Out-Of-Bounds Read
The post Webkit WebCore::SimpleLineLayout::RunResolver::runForPoint …
WebKit suffers from an out-of-bounds read in WebCore::RenderText::localCaretRect.
Source: WebKit WebCore::RenderText::localCaretRect Out-Of-Bounds Read
The post WebKit WebCore::RenderText::localCaretRect Out-Of-Bounds Read appeared first on MondoUnix.
There is a use-after-free security vulnerability in WebCore::PositionIterator::decrement in WebKit.
Source: WebKit WebCore::PositionIterator::decrement Use-After-Free
The post WebKit WebCore::PositionIterator::decrement Use-After-Free appeared first on…
There is a use-after-free security vulnerability in WebCore::TreeScope::documentScope in WebKit.
Source: WebKit WebCore::TreeScope::documentScope Use-After-Free
The post WebKit WebCore::TreeScope::documentScope Use-After-Free appeared first on MondoUnix.
MyTy versions 5.0.4 through 5.1.7 suffer from a cross site scripting vulnerability.
Source: MyTy 5.1.7 Cross Site Scripting
The post MyTy 5.1.7 Cross Site Scripting appeared first on MondoUnix.
MyTy versions 5.0.4 through 5.1.6 suffer from a remote blind SQL injection vulnerability.
Source: MyTy 5.1.6 Blind SQL Injection
The post MyTy 5.1.6 Blind SQL Injection appeared first on MondoUnix.
WordPress Breezing Forms plugin version 1.2.7.42 suffers from a cross site scripting vulnerability.
Source: WordPress Breezing Forms 1.2.7.42 Cross Site Scripting
The post WordPress Breezing Forms 1.2.7.42 Cross Site Scripting appeared first on MondoUn…
It was discovered that the nt!NtQueryDirectoryFile system call discloses portions of uninitialized pool memory to user-mode clients on Windows 10, due to uninitialized fields in the output structure being copied to the application.
Source: Microsoft Wi…
It is possible to add a cached signing level to an unsigned file by exploiting a TOCTOU in CI leading to circumvention of Device Guard policies and possibly PPL signing levels.
Source: Microsoft Windows CI CiSetFileCache TOCTOU Security Feature Bypass
…
WordPress Emag Marketplace Connector plugin version 1.0 suffers from a cross site scripting vulnerability.
Source: WordPress Emag Marketplace Connector 1.0 Cross Site Scripting
The post WordPress Emag Marketplace Connector 1.0 Cross Site Scripting appe…
