Chrome V8 has an issue where JSCallReducer::ReduceArrayIndexOfIncludes in turbofan fails to insert Map checks.
>> ARCHIVE: 2019-05
OpenProject versions 5.0.0 through 8.3.1 suffer from a remote SQL injection vulnerability.
CyberArk Enterprise Password Vault 10.7 – XML External Entity Injection
RICOH SP 4510DN Printer – HTML Injection
dotCMS 5.1.1 – HTML Injection
PHPRunner 10.1 – Denial of Service (PoC)
SpotPaltalk 1.1.5 – Denial of Service (PoC)
ASPRunner.NET 10.1 – Denial of Service (PoC)
TheHive Project Cortex < 1.15.2 – Server-Side Request Forgery
SpotIM 2.2 – Denial of Service (PoC)