September 9, 2022 CVE – 2022 – 20340 – Android OS user activity information disclosure via side-channel vulnerability Description In SELinux policy, there is a possible way of inferring which websites are being opened in the browser due to a…
March 16, 2022 CVE – 2020 – 29653 – Froxlor HTML Injection dangling markup Description Froxlor instances <= 0.10.22 do not perform validation on user-input passed in the customermail GET parameter. More specifically, the value of this parameter is reflected…
March 2, 2022 CVE – 2019 – 16469 – Adobe Experience Manager expression language injection vulnerability Description Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 has an expression language injection vulnerability. Successful exploitation could lead to sensitive…