:: Deepquest ::

CEWE Photoshow version 6.3.4 suffers from a denial of service vulnerability.

Mikrotik WinBox version 6.42 suffers from a credential disclosure vulnerability.

ADM versions 3.1.2RHG1 and below suffer from a remote code execution vulnerability.

Silver Peak EdgeConnect version 8.1.4.9_65644 suffers from brute force, information leakage, cross site request forgery, cross site scripting, denial of service, default SNMP community string, and path traversal vulnerabilities.

Microsoft Edge Chakra JIT suffers from an ImplicitCallFlags check bypass vulnerability with Intl.

Microsoft Edge Chakra suffers from a parameter scope parsing bug.

Microsoft Edge Chakra has an issue where DictionaryPropertyDescriptor::CopyFrom does not copy all fields.

Microsoft Edge Chakra JIT suffers from a type confusion vulnerability with InlineArrayPush.

The InitializeNumberFormat function in Intl.js is used to initialize an Intl.NumberFormat object, and InitializeDateTimeFormat is used for an Intl.DateTimeFormat object. There are two versions of each initializer. One is for WinGlob and the other is for ICU. The problem is that the versions for ICU don’t check whether the given object has been initialized. This […]

Easy RM to MP3 Converter version 2.6 stack buffer overflow exploit for Windows 7.