About the security content of iOS 18.6 and iPadOS 18.6

About the security content of iOS 18.6 and iPadOS 18.6 This document describes the security content of iOS 18.6 and iPadOS 18.6. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

CVE-2024-41244

An Incorrect Access Control vulnerability was found in /smsa/viewclass.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view CLASS details...

CVE-2023-33762

eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a SQL injection vulnerability via the Activity parameter...

CVE-2019-0961

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0758, CVE-2019-0882...

CVE-2025-26649 Windows Secure Channel Elevation of Privilege Vulnerability

...

CVE-2023-25313

OS injection vulnerability in World Wide Broadcast Network AVideo version before 12.4, allows attackers to execute arbitrary code via the video link field to the Embed a video link feature...

Remote code execution

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951,...