>> TAG: #0day

WebKit JavaScriptCore – CodeBlock Dangling Watchpoints Use-After-Free

AIDA64 Business 5.99.4900 – SEH Buffer Overflow (EggHunter)

TeemIp IPAM < 2.4.0 – 'new_config' Command Injection (Metasploit)

Ashop Shopping Cart Software – SQL Injection

PhreeBooks ERP 5.2.3 – Remote Command Execution

Cisco RV320 and RV325 – Unauthenticated Remote Code Execution (Metasploit)

PhreeBooks ERP 5.2.3 – Arbitrary File Upload

Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 – ‘ReadableStream’ Internal Object Leak Type Confusion

Clinic Pro v4 – ‘month’ SQL Injection

Google Chrome 72.0.3626.81 – ‘V8TrustedTypePolicyOptions::ToImpl’ Type Confusion