Microsoft Edge Chakra suffers from an incorrect usage of PushPopFrameHelper in InterpreterStackFrame::ProcessLinkFailedAsmJsModule.
53077803d9044bae974a778111a9fcaf6c3e820a11cbd47102da400e9b90b579
InterpreterStackFrame::ProcessLinkFailedAsmJsModule in Microsoft Edge Chakra incorrectly re-parses.
c53cd289f467e1de7349832a952c443f0911075c2b4e8105c672275feffcbb42
Microsoft Edge suffers from an out-of-bounds access vulnerability when fetching source.
90333c9b80c4a525c88f900f5a40bd465f51ad669c4eb1250701f102f0bcbe41
Microsoft Edge Chakra does not call SetIsCatch for all cases in PreVisitCatch.
fb550f7db174597f5dc9611f3e8ca799750409d21d7b6218303131f8b1c4cc78
Microsoft Edge suffers from an out-of-bounds read in CInputDateTimeScrollerElement::_SelectValueInternal. The vulnerability has been confirmed on Windows 10 Enterprise 64-bit (OS version 1607, OS build 14393.1198) and Microsoft Edge 38.14393.1066.0, Microsoft EdgeHTML 14.14393.
0c7c105204e786ed354e8850c674a49c8d2983959710c13a19f428b802d31607
Philex CMS version 0.2 suffers from a directory traversal vulnerability.
413a323e988d90ebbb6c90349a66bc86d6b89c0eb0ddafc89ec41cb84ed9eb73
FreeBSD jail incompletely protects the access to the IPC primitives. The 'allow.sysvipc' setting only affects IPC queues, leaving other IPC objects unprotected, making them reachable system-wide independently of the system configuration. Versions 7.0 through 10.3 are affected. Proof of concept included.
0beaf294618c4baefabc3693cafae6df318872d746e906006697c1f46542cd94
AdvanDate iCupid Dating software version 12.2 suffers from a remote SQL injection vulnerability.
acca81d6fff2697fdb0f281c4a5e631ebea4912fb786a0298555e08d0859d8b9
ALLPlayer version 7.4 SEH unicode buffer overflow exploit.
ca1ca522fd89108e5175a0d469750879c75d75143ff8ae8b79094fb603a7709a
ClipBucket version2.8.3 suffers from remote SQL injection, arbitrary file read/write, and default credential vulnerabilities.
35e3ac02402d77e06f0e1a4277e12bf1acda098063add07c4e899598c8fc9d6b
Internet Download Manager version 6.28 Build 17 SEH unicode buffer overflow exploit.
20124fa681e0d3c04fd40055ba8e6800edf717da45e493d4113eeb5997407708
OSNEXUS QuantaStor version 4 suffers from multiple information disclosure vulnerabilities including user enumeration.
0762c7d4aa2b0a1660c63fde56c7e91b852dcdf5a6a1019d3e8ed62845a1049f
Quali CloudShell version 7.1.0.65.08 (Patch 6) suffers from multiple persistent cross site scripting vulnerabilities.
637e3c25b0e12a3262f74153f673da90fae642dc9440c35c5b91eeb653a851ff
Xamarin Studio for Mac versions 6.2.1 (build 3) and 6.3 (build 863) suffer from a local privilege escalation vulnerability.
a2f41032628fcb3233d26bea6d30e9def54faf5fca09f48714b2342e3c33ceb0
WordPress Fadvertisement plugin suffers from a remote SQL injection vulnerability.
7a0c1f93965ef9d2bb44f595dfe5547d386b27bab0b7e54ce79edb7f45ae222a
Tomabo MP4 Converter version 3.19.15 suffers from a denial of service vulnerability.
c2ac20551ba3d941d91fa48803f943ffcee28a55676e5555fee1f68ad92e235d
Theo CMS versions 2.0 and below suffer from a remote SQL injection vulnerability.
98622efd08cc1f0807c5bcb0ef43a726068683d3fc06d28c72fe1e086dca2cc6
RealTime RWR-3G-100 router suffers from a cross site request forgery vulnerability.
9958db6e4a33e71786b0330d416a220f1c73c39d6218e05719d261b1aae1c47a
De-Workshop Auto Workshop Portal version 1.0 suffers from a remote SQL injection vulnerability.
c7209a306e6ced6b8889e2b1bf366ddf07dd56722572489f3264a0003bd57460
De-Journal Academic Journal and Peer Review System version 1.0 suffers from a remote SQL injection vulnerability.
720a785e6381af5a5f86a54b8c798145d81b3faf8719782e5720d9dee371053e
Pluck CMS version 4.7.4 suffers from a cross site request forgery vulnerability.
49f4ac3f2d05457707a143d5c21e77ac3ac4d068da5364ca96bf90dc3b045a9a
De-Tutor version 1.0 suffers from a remote SQL injection vulnerability.
951c1f5e23eaa8e4f943bfa8bd3b8f63b8402a5368d5df8bf8a4fbca3aadc00b
ImageBay version 1.0 suffers from a remote SQL injection vulnerability.
f1eb847dfd9d7cfd266366361cb0eed43f6bfbcf00d888021488f6b76d5a8a55
There is a use-after-free vulnerability in Microsoft Edge that can lead to memory disclosure. The vulnerability has been confirmed on Windows 10 Enterprise 64-bit (OS version 1607, OS build 14393.1198), Microsoft Edge 38.14393.1066.0, Microsoft EdgeHTML 14.14393.
6c092dbe2c1f903c835e705268adc2d309af972d14f860be14610356e48c272c
CMS Made Simple version 0.9.2 suffers from a cross site scripting vulnerability.
4b27df202538a2753de72529c61cfe0b8b51899dff5a0f9ed0bb67fbaa911210