JSC suffers from a data mishandling bug in ytecodeGenerator::emitEqualityOpImpl.
JSC YarrJIT initParenContextFreeList Byte Overwrite
A bug in JSC YarrJIT initParenContextFreeList allows for bytes to be overwritten.
Amcrest Cameras 2.520.AC00.18.R Unauthenticated Audio Streaming
Amcrest Cameras version 2.520.AC00.18.R suffers from an authentication bypass vulnerability allowing an attacker to retrieve audio streams.
WordPress WP Fastest Cache 0.8.9.5 Directory Traversal
WordPress WP Fastest Cache plugin versions 0.8.9.5 and below suffer from a directory traversal vulnerability.
iMessage NSKeyedUnarchiver Deserialization
iMessage suffers from a vulnerability where NSKeyedUnarchiver deserialization allows file backed NSData objects.
iMessage NSArray Deserialization
iMessage suffers from a vulnerability where NSArray deserialization can invoke a subclass that does not retain references.
iMessage NSKnownKeysDictionary1 Memory Corruption
iMessage suffers from a memory corruption vulnerability when decoding NSKnownKeysDictionary1.
[webapps] Oracle Hyperion Planning 11.1.2.3 – XML External Entity
Oracle Hyperion Planning 11.1.2.3 – XML External Entity
WordPress Real Estate Theme 2.8.9 Cross Site Scripting
WordPress Real Estate theme version 2.8.9 suffers from a cross site scripting vulnerability.
GigToDo 1.3 Cross Site Scripting
GigToDo versions 1.3 and below suffer from a persistent cross site scripting vulnerability.