Dan Crowley

**Name of the Vulnerable Software and Affected Versions** W3C Amaya Web Browser versions 10.0 through 11.0 **Description** The issue is related to multiple stack-based buffer overflows that allow remote attackers to execute arbitrary code. This can be achieved via a long `type` parameter in an `input` tag, which is not properly handled by the `EndOfXmlAttributeValue` function, or an "HTML GI" in a start tag, which is not properly handled by the `ProcessStartGI` function. Additionally, there are unspecified vectors in `html2thot.c` and `xml2thot.c` related to the `msgBuffer` variable. **Recommendations** For W3C Amaya Web Browser versions 10.0 through 11.0, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ACS Blog version 1.1.1 **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via onmouseover or onload events in `img`, `link`, or `mail` tags. **Recommendations** For ACS Blog version 1.1.1, update to a version that fixes this issue to prevent remote attackers from injecting arbitrary web script or HTML.