Sergei Glazunov

8 exploits Active since Dec 2019
CVE-2019-8690 EXPLOITDB MEDIUM text WORKING POC
Apple Icloud < 7.13 - XSS
A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
CVSS 6.1
EIP-2026-103710 EXPLOITDB html WORKING POC
WebKit - User-agent Shadow root Leak in WebCore::ReplacementFragment::ReplacementFragment
EIP-2026-103711 EXPLOITDB text WORKING POC
WebKit - UXSS Using JavaScript: URI and Synchronous Page Loads
EIP-2026-103706 EXPLOITDB text WRITEUP
WebKit - Universal XSS in HTMLFrameElementBase::isURLAllowed
EIP-2026-103708 EXPLOITDB html WORKING POC
WebKit - Universal XSS in WebCore::command
EIP-2026-103709 EXPLOITDB text WRITEUP
WebKit - Universal XSS Using Cached Pages
EIP-2026-103494 EXPLOITDB html WORKING POC
Google Chrome 74.0.3729.0 / 76.0.3789.0 - Heap Use-After-Free in blink::PresentationAvailabilityState::UpdateAvailability
EIP-2026-103491 EXPLOITDB html WORKING POC
Google Chrome 73.0.3683.103 - 'WasmMemoryObject::Grow' Use-After-Free