Apple Safari version 8.0.8 was prone to a URI spoofing vulnerability.
56f1ab6b2010771a579cb4098d64865d5cac498ada576c8588d66d4a3b85e943
Apache Sling versions 2.2.0 and 2.3.0 suffer from infinite loop issues that can lead to denial of service.
e8ca4a1b428c43b8ecffd2aa6fcbeba7528df723bd1d9862f6e62bef76dc47eb