Tarantula Team (VinCSS LLC)'s repositories
CSS-injection-in-Swagger-UI
CSS injection vulnerability in Swagger UI
CVE-2019-12949
CVE-2019-12949
Traveloka-Android-App-Critical-Vulnerability
Exported Webview in Traveloka Android App lead to opening arbitrary URLs/XSS and read any protected files
Multiple-Cross-Site-Scripting-vulnerabilities-in-Zoho-ManageEngine
Multiple cross-site scripting vulnerabilities in Zoho ManageEngine
CVE-2019-19012
An integer overflow in the search_in_range function in regexec.c in Oniguruma 6.x before 6.9.4_rc2 leads to an out-of-bounds read
CVE-2019-19203
An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read
CVE-2019-19204
Heap-buffer-overflow in Oniguruma (function fetch_interval_quantifier)