118 Telecom’s website suffers from a cross site scripting vulnerability.
>> AUTHOR: deepcore
118 Telecom’s website suffers from a cross site scripting vulnerability.
Avast Sandbox/Autosandbox message filtering suffers from a flaw that allows for privilege escalation.
xwpe versions 1.5.30a-2.1 and below are prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input.
WiX Toolset installers suffer from a DLL hijacking vulnerability.
Java Platform SE 6 U24 HtmlConverter.exe version 6.0.240.50 suffers from a buffer overflow vulnerability.
GRR versions 3.0.0-RC1 and below suffer from a remote code execution vulnerability with privilege escalation through a file upload filter bypass.
Apple Security Advisory 2016-01-19-3 – Safari 9.0.3 is now available and addresses privacy and multiple memory corruption vulnerabilities.
Apple Security Advisory 2016-01-19-2 – OS X El Capitan 10.11.3 and Security Update 2016-001 are now available and address memory corruption, code execution, and privilege escalation vulnerabilities.
Apple Security Advisory 2016-01-19-1 – iOS 9.2.1 is now available and addresses memory corruption and privacy issues.
CakePHP versions 3.2.0 and below suffer from a _method cross site request forgery protection bypass vulnerability.