>> TAG: #0day

OOP CMS BLOG 1.0 – Multiple SQL Injection

OOP CMS BLOG 1.0 – Multiple Cross-Site Request Forgery

FileZilla 3.40.0 – ‘Local search’ / ‘Local site’ Denial of Service (PoC)

Google Chrome < M72 – PaymentRequest Service Use-After-Free

macOS XNU – Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image

Google Chrome < M72 – Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

Google Chrome < M72 – RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free

Google Chrome < M72 – FileWriterImpl Use-After-Free

tcpdump < 4.9.3 – Multiple Heap-Based Out-of-Bounds Reads

Linux < 4.14.103 / < 4.19.25 – Out-of-Bounds Read and Write in SNMP NAT Module