Chrome

https://chromereleases.googleblog.com/2019/06/stable-channel-update-for-desktop.html
[$3000][950328] High CVE-2019-5831: Incorrect map processing in V8. Reported by yngwei(JiaWei, Yin) of IIE Varas and sakura of Tecent Xuanwu Lab on 2019-04-07

https://chromereleases.googleblog.com/2019/07/stable-channel-update-for-desktop_30.html
[$3000][976627] High CVE-2019-5853: Memory corruption in regexp length check. Reported by yngwei(@yngweijw) of IIE Varas and sakura(@eternalsakura13) of Tecent Xuanwu Lab on 2019-06-19

https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_7.html
[$3000][1059669] High CVE-2020-6455: Out of bounds read in WebSQL. Reported by Nan Wang(@eternalsakura13) and Guang Gong of Alpha Lab, Qihoo 360 on 2020-03-09

Safari

https://support.apple.com/en-us/HT210123
CVE-2019-8583: sakura of Tencent Xuanwu Lab, and dwfault working at ADLab of Venustech

SQLite

https://www.sqlite.org/src/info/f50af3e8a565776b
OOB memory access on a table rename
This problem was discovered and reported by sakura(@eternalsakura13) of Alpha Team, Qihoo 360

https://www.sqlite.org/cgi/src/info/23439ea582241138
Stack overflow in sqlite3_str_vappendf, caused by int overflow
I submitted this vulnerability to Android, but they didn’t deal with it, bug collision.