WordPress Plugin Domain Check 1.0.16 – Reflected Cross-Site Scripting (XSS) (Authenticated)
Tags:
0day,
remote exploit
CONTPAQi(R) AdminPAQ 14.0.0 – Unquoted Service Path
Tags:
0day,
remote exploit
Mozilla Firefox 67 – Array.pop JIT Type Confusion
Tags:
0day,
remote exploit
HackTool.Win32.Muzzer.a malware suffers from a buffer overflow vulnerability.
Backdoor.Win32.Tiny.c malware suffers from a code execution vulnerability.
Moxa TN-5900 versions 3.1.0 and below use an insecure method to validate firmware updates. A malicious user with access to the management interface can upload arbitrary code in a crafted
Moxa TN-5900 versions 3.1 and below suffer from an issue where a user who has authenticated to the management web application is able to leverage a command injection vulnerability in the p12 processing code of the certificate management function web_CERMGMTUpload.
Apple Security Advisory 2022-01-26-1 – iOS 15.3 and iPadOS 15.3 addresses buffer overflow, code execution, information leakage, path sanitization, and use-after-free vulnerabilities.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2022-01-26-2 – macOS Monterey 12.2 addresses buffer overflow, code execution, information leakage, out of bounds write, path sanitization, and use-after-free vulnerabilities.
Tags:
Apple,
ios,
osx
Apple Security Advisory 2022-01-26-3 – macOS Big Sur 11.6.3 addresses buffer overflow, bypass, code execution, information leakage, and path sanitization vulnerabilities.
Tags:
Apple,
ios,
osx