Run alongside the CanSecWest security conference, Pwn2Own gives security researchers a chance to demonstrate their chops and to win cash and other prizes.
iTWire previously reported the results of the first day of competition, which saw five successful attacks using vulnerabilities in Safari, Flash and Chrome.
By the end of day two, 20 new vulnerabilities had been found: six in Windows and two in Edge, giving a total of eight in Microsoft software; five in OS X and three in Safari, for a total of eight; and four in Flash. A vulnerability used against Chrome had already been reported.
(Trend Micro recently acquired HP Enterprise's TippingPoint security operation.)
So whether you favour Windows or OS X, you'd be mistaken if you think the vendor has security under control.
But at least these 20 new vulnerabilities were discovered by people who were prepared to disclose them to the vendors concerned. TippingPoint customers will also receive protection against these vulnerabilities from 22 March.