CSRF vulnerability in Multisite Post Duplicator could allow an attacker to do almost anything an admin user can do (WordPress plugin)
https://goo.gl/2YTNEk

Google Analytics Counter Tracker WordPress Plugin unauthenticed PHP Object injection vulnerability
https://goo.gl/1Glwj8

Apple iOS/tvOS/watchOS Remote memory corruption through certificate file
https://goo.gl/iD8UMy

APPLE-SA-2016-12-12-2 watchOS 3.1.1
https://goo.gl/iGTjTp

APPLE-SA-2016-12-12-1 iOS 10.2
https://goo.gl/QciSRM

CVE-2013-3111: MSIE 9 IEFRAME CSelectionInteractButtonBehavior::_UpdateButtonLocation use-after-free
https://goo.gl/ct6pM2

APPLE-SA-2016-12-12-3 tvOS 10.1
https://goo.gl/8Ktu2E

SQL injection in Joomla extension DT Register
https://goo.gl/7WUQOz

APPLE-SA-2016-12-13-1 macOS 10.12.2
https://goo.gl/GX5xqW

MSIE 9 MSHTML CMarkup::ReloadInCompatView use-after-free
https://goo.gl/VMBtFd

Adobe Animate <= v15.2.1.95 Memory Corruption Vulnerability
https://goo.gl/Yf74Tw

APPLE-SA-2016-12-13-5 Additional information for APPLE-SA-2016-12-12-1 iOS 10.2
https://goo.gl/BYaoEU

APPLE-SA-2016-12-13-4 iCloud for Windows v6.1
https://goo.gl/1gz6o0

APPLE-SA-2016-12-13-3 iTunes 12.5.4
https://goo.gl/ZcGKXo

APPLE-SA-2016-12-13-2 Safari 10.0.2
https://goo.gl/l0f2Xs

Reflected XSS in MailChimp for WordPress could allow an attacker to do almost anything an admin user can (WordPress plugin)
https://goo.gl/4NFpUM

APPLE-SA-2016-12-13-8 Transporter 1.9.2
https://goo.gl/SkJ9Dd

APPLE-SA-2016-12-13-7 Additional information for APPLE-SA-2016-12-12-2 watchOS 3.1.1
https://goo.gl/kHbsdQ

APPLE-SA-2016-12-13-6 Additional information for APPLE-SA-2016-12-12-3 tvOS 10.1
https://goo.gl/aC0akU

Nagios Core < 4.2.4 Root Privilege Escalation [CVE-2016-9566]
https://goo.gl/3KB4JW

Nagios Core < 4.2.2 Curl Command Injection leading to Remote Code Execution [CVE-2016-9565]
https://goo.gl/tn7ScU