#firefox

Plus: Spyware-packing ads, TikTok GDPR violations, Elon Musk investigations, and more.

Italia Mediasky CMS version 2.0 suffers from a cross site scripting vulnerability.

Italia Mediasky CMS version 2.0 suffers from a cross site request forgery vulnerability.

Ubuntu Security Notice 6367-1 - It was discovered that Firefox did not properly manage memory when handling WebP images. If a user were tricked into opening a webpage containing malicious WebP image file, an attacker could potentially exploit these to cause a denial of service or execute arbitrary code.

Debian Linux Security Advisory 5496-1 - A buffer overflow in parsing WebP images may result in the execution of arbitrary code.

iSmile Soft CMS version 0.3.0 suffers from an add administrator vulnerability.

islamnt CMS version 2.1.0 suffers from an add administrator vulnerability.

islamnt CMS version 2.1.0 suffers from a cross site scripting vulnerability.

ImgHosting version 1.3 suffers from a cross site scripting vulnerability.

Kleeja version 1.5.4 suffers from a cross site scripting vulnerability.