2 matches found
sports.ettoday.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1158935 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
CVE-2019-12958
CVE-2019-12958 affects Xpdf 4.01.01, where FoFiType1C::convertToType0 can over-read the heap when accessing the second element of privateDicts, because the array is only one element allocated. Fedora advisories show remediations by updating xpdf to 4.02 (FEDORA-2019-01da705767, FEDORA-2019-759ba8...