Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Sep 16
The SEC Consult Vulnerability Lab published a new blog post titled:Posted by Andrey Stoykov on Sep 16
# Exploit Title: Stored XSS to Account Takeover - htmlyv2.9.9Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-10 macOS Ventura 13.7Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-9 macOS Sonoma 14.7Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-8 iOS 17.7 and iPadOS 17.7Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-7 Xcode 16Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-6 Safari 18Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-5 visionOS 2Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-4 watchOS 11Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-3 tvOS 18Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-2 macOS Sequoia 15Posted by Apple Product Security via Fulldisclosure on Sep 16
APPLE-SA-09-16-2024-1 iOS 18 and iPadOS 18Posted by RUBEN LOPEZ HERRERA on Sep 11
Product: 3DSecure 2.0Posted by RUBEN LOPEZ HERRERA on Sep 11
Product: 3DSecure 2.0Posted by RUBEN LOPEZ HERRERA on Sep 11
Product: 3DSecure 2.0Posted by RUBEN LOPEZ HERRERA on Sep 11
Product: 3DSecure 2.0Posted by RUBEN LOPEZ HERRERA on Sep 11
Product: 3DSecure 2.0Posted by KoreLogic Disclosures via Fulldisclosure on Sep 10
KL-001-2024-012: VICIdial Authenticated Remote Code ExecutionPosted by KoreLogic Disclosures via Fulldisclosure on Sep 10
KL-001-2024-011: VICIdial Unauthenticated SQL InjectionPosted by Martin Heiland via Fulldisclosure on Sep 09
Dear subscribers,