-
I-CVE-2019-12524 β iklayenti, lisebenzisa i-URL eklanywe ngokukhethekile, lingakwazi ukweqa imithetho eshiwo kusetshenziswa umyalo we-url_regex futhi lithole ulwazi oluyimfihlo mayelana nommeleli kanye nethrafikhi ecutshunguliwe (lithole ukufinyelela kusixhumi esibonakalayo Somphathi Wenqolobane). -
I-CVE-2019-12520 β ngokukhohlisa idatha yegama lomsebenzisi ku-URL, ungafinyelela ukugcinwa kokuqukethwe okungelona iqiniso ekhasini elithile kunqolobane, isibonelo, okungasetshenziswa ukuhlela ukusetshenziswa kwekhodi yakho ye-JavaScript kumongo wamanye amasayithi.
Source: opennet.ru