The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized apps to actively request permission to modify data in the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the app is opened. An attacker...
9.1CVSS
8.7AI Score
0.001EPSS
The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized applications to actively request permission to insert data into the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the application is...
7.5CVSS
7.1AI Score
0.001EPSS
A vulnerability, which was classified as problematic, has been found in w3c Unicorn. This issue affects the function ValidatorNuMessage of the file src/org/w3c/unicorn/response/impl/ValidatorNuMessage.java. The manipulation of the argument message leads to cross site scripting. The attack may be...
6.1CVSS
6AI Score
0.001EPSS
Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via...
7.5CVSS
7.5AI Score
0.001EPSS
Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine...
7.5CVSS
7.6AI Score
0.001EPSS
Unicorn Engine v1.0.3 was discovered to contain a use-after-free vulnerability via the hook...
7.8CVSS
7.7AI Score
0.001EPSS
Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function uc_close at...
7.5CVSS
7.5AI Score
0.001EPSS
An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. It allows local attackers to escape the sandbox. An attacker must first obtain the ability to execute crafted code in the target sandbox in order to exploit this vulnerability. The specific flaw exists within the...
8.1CVSS
8.1AI Score
0.002EPSS
The Unicorn framework before 0.36.1 for Django allows XSS via a component. NOTE: this issue exists because of an incomplete fix for...
6.1CVSS
5.3AI Score
0.001EPSS
5.4CVSS
5.2AI Score
0.001EPSS
Unicorn Engine 1.0.2 has an out-of-bounds write in tb_flush_armeb (called from cpu_arm_exec_armeb and...
5.5CVSS
5.6AI Score
0.001EPSS
5.5CVSS
5.5AI Score
0.0004EPSS
unicorn-list is a web framework. unicorn-list is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the...
7.5CVSS
7.4AI Score
0.004EPSS