Subscribe via feed.
Archive for February, 2021

[webapps] WordPress Plugin Supsystic Contact Form 1.7.5 – Multiple Vulnerabilities

Posted by deepcore under Security (No Respond)

WordPress Plugin Supsystic Contact Form 1.7.5 – Multiple Vulnerabilities

Tags: ,

[webapps] WordPress Plugin Supsystic Pricing Table 1.8.7 – Multiple Vulnerabilities

Posted by deepcore under Security (No Respond)

WordPress Plugin Supsystic Pricing Table 1.8.7 – Multiple Vulnerabilities

Tags: ,

[local] Millewin 13.39.146.1 – Local Privilege Escalation

Posted by deepcore under Security (No Respond)

Millewin 13.39.146.1 – Local Privilege Escalation

Tags: ,

[webapps] WordPress Plugin Welcart e-Commerce 2.0.0 – 'search[order_column][0]' SQL injection

Posted by deepcore under Security (No Respond)

WordPress Plugin Welcart e-Commerce 2.0.0 – ‘search[order_column][0]’ SQL injection

Tags: ,

[webapps] Jenzabar 9.2.2 – 'query' Reflected XSS.

Posted by deepcore under Security (No Respond)

Jenzabar 9.2.2 – ‘query’ Reflected XSS.

Tags: ,

http://www.tumbonbanduea.go.th/index.php

Posted by deepcore under defacement (No Respond)

http://www.tumbonbanduea.go.th/index.php notified by Imkey7

Tags:

Apple Safari Remote Code Execution

Posted by deepcore under Apple (No Respond)

Apple Safari is susceptible to a remote code execution vulnerability via an undefined othersubr in Type 1 fonts handled by libType1Scaler.dylib on macOS and iOS.

Tags: , ,

Apple CoreText libType1Scaler.dylib Memory Disclosure

Posted by deepcore under Apple (No Respond)

Apple CoreText libType1Scaler.dylib suffers from a memory disclosure vulnerability via an uninitialized transient array.

Tags: , ,

Apple CoreText libType1Scaler.dylib Buffer Overflow

Posted by deepcore under Apple (No Respond)

Apple CoreText libType1Scaler.dylib suffers from a heap buffer overflow vulnerability in the Counter Control Hints.

Tags: , ,

Apple CoreText libFontParser.dylib Stack Corruption

Posted by deepcore under Apple (No Respond)

Apple CoreText libFontParser.dylib suffers from a stack corruption vulnerability in the handling of /BlendDesignPositions Type 1 objects.

Tags: , ,