Z-Blog 1.5.1.1740 – Full Path Disclosure
>> TAG: #0day
Z-Blog 1.5.1.1740 – Full Path Disclosure
ProcessMaker – Plugin Upload (Metasploit)
Google Chrome V8 – ‘Genesis::InitializeGlobal’ Out-of-Bounds Read/Write
Microsoft Edge Chakra JIT – Stack-to-Heap Copy (Incomplete Fix)
Google Chrome V8 – ‘ElementsAccessorBase::CollectValuesOrEntriesImpl’ Type Confusion
Microsoft Edge Chakra JIT – Stack-to-Heap Copy (Incomplete Fix 2)
Frog CMS 0.9.5 – Cross-Site Request Forgery (Add User)
WampServer 3.1.1 – Cross-Site Scripting / Cross-Site Request Forgery
VideoFlow Digital Video Protection (DVP) 2.10 – Directory Traversal
DLink DIR-601 – Admin Password Disclosure