Author: Cyberthreat Blog

dwarf_leb.c in libdwarf allows attackers to cause a denial of service (SIGSEGV).

Binaries compiled against targets that use the libssp library in GCC for stack smashing protection (SSP) might allow local users to perform buffer overflow attacks by leveraging lack of the Object Size Checking feature.

SQL injection vulnerability in ZCMS 1.1.

markdown-it before 4.1.0 does not block data: URLs.

Cross-site scripting (XSS) vulnerability in the WordPress Backup to Dropbox plugin before 4.1 for WordPress.