WordPress Emag Marketplace Connector plugin version 1.0 suffers from a cross site scripting vulnerability.
>> ARCHIVE: 2017-11
It is possible to add a cached signing level to an unsigned file by exploiting a TOCTOU in CI leading to circumvention of Device Guard policies and possibly PPL signing…
It was discovered that the nt!NtQueryDirectoryFile system call discloses portions of uninitialized pool memory to user-mode clients on Windows 10, due to uninitialized fields in the output structure being copied…
WebKit – ‘WebCore::PositionIterator::decrement’ Use-After-Free
WebKit – ‘WebCore::InputType::element’ Use-After-Free
WebKit – ‘WebCore::RenderText::localCaretRect’ Out-of-Bounds Read
WebKit – ‘WebCore::AXObjectCache::performDeferredCacheUpdate’ Use-After-Free
WebKit – ‘WebCore::SimpleLineLayout::RunResolver::runForPoint’ Out-of-Bounds Read
WebKit – ‘WebCore::Style::TreeResolver::styleForElement’ Use-After-Free
WebKit – ‘WebCore::SVGPatternElement::collectPatternAttributes’ Out-of-Bounds Read