inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. Date published : 2017-05-22 http://www.securityfocus.com/bid/95131 http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently execute arbitrary code by leveraging type confusion in .initialize_dsc_parser. Date published : 2017-05-22 http://www.securityfocus.com/bid/95337 http://git.ghostscript.com/?p=ghostpdl.git;h=875a0095f37626a721c7ff57d606a0f95af03913
Use-after-free vulnerability in Ghostscript 9.20 might allow remote attackers to execute arbitrary code via vectors related to a reference leak in .setdevice. Date published : 2017-05-22 http://www.securityfocus.com/bid/95336 https://bugs.ghostscript.com/show_bug.cgi?id=697179
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document. Date published :...
Untrusted search path vulnerability in 7 Zip for Windows 16.02 and earlier allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. Date published : 2017-05-22 http://www.7-zip.org/history.txt https://jvn.jp/en/jp/JVN76780067/index.html
IBM Distributed Marketing and Marketing Platform 8.6, 9.0, 9.1, and 10.0 could allow an authenticated user to escalate their privileges and gain administrative permissions over the web application. IBM X-Force ID: 118282. Date published...
Integer overflow in the rwpng_read_image24_libpng function in rwpng.c in pngquant 2.7.0 allows remote attackers to have unspecified impact via a crafted PNG file, which triggers a buffer overflow. Date published : 2017-05-22 https://github.com/pornel/pngquant/commit/b7c217680cda02dddced245d237ebe8c383be285 http://sf.snu.ac.kr/gil.hur/publications/shovel.pdf
Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.143 allow remote attackers to cause a denial of service or possibly have other impact via unknown vectors. Date published : 2017-05-22 http://www.securityfocus.com/bid/93238 https://bugs.chromium.org/p/chromium/issues/detail?id=645028
Use-after-free vulnerability in V8 in Google Chrome before 53.0.2785.143 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via unknown vectors. Date published : 2017-05-22 http://www.securityfocus.com/bid/93238 https://bugzilla.redhat.com/show_bug.cgi?id=1380631
SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors. Date published : 2017-05-22 http://www.securityfocus.com/bid/93790...
Cross-site request forgery (CSRF) vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to hijack the authentication of a user to perform unintended operations via unspecified vectors....
Cross-site scripting vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2017-05-22 http://www.securityfocus.com/bid/93790 http://www.wp-olivecart.com/news/20160925.html
Untrusted search path vulnerability in The installer of e-Tax Software all versions allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. Date published : 2017-05-22 http://www.securityfocus.com/bid/93606 https://jvn.jp/en/jp/JVN63012325/index.html
Untrusted search path vulnerability in Evernote for Windows versions prior to 6.3 allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. Date published : 2017-05-22 http://www.securityfocus.com/bid/93572 https://evernote.com/security/updates/#win