5838 matches found
CVE-2021-21163
Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server...
CVE-2021-21163
Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server...
CVE-2021-21163
Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server...
CVE-2021-21163
The CVE-2021-21163 issue affects Chromium/Google Chrome Reader Mode and is caused by insufficient data validation, allowing a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server. Affected: Chromium/Chrome prior to version 89.0.4389.72. Impact (as stated): cros...
Information Disclosure
chromium is vulnerable to information disclosure. The vulnerability exists through the lack of data validation in the Reader Mode that allows cross-origin data to be leaked...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0401-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...
OPENSUSE-SU-2021:0392-1 Security update for chromium
This update for chromium fixes the following issues: Update to 89.0.4389.72 boo1182358, boo1182960: - CVE-2021-21159: Heap buffer overflow in TabStrip. - CVE-2021-21160: Heap buffer overflow in WebAudio. - CVE-2021-21161: Heap buffer overflow in TabStrip. - CVE-2021-21162: Use after free in WebRT...
Time in Status 跨站脚本漏洞
Atlassian Time in Status is a software application from Atlassian Australia that provides a process for identifying issues by reporting the time spent on each status, assignee or group for each issue. A cross-site scripting vulnerability exists in the Time in Status app for Jira in versions prior...
Sourcecodester Doctor Appointment System Cross-Site Scripting Vulnerability
Sourcecodester Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . Sourcecodester Doctor Appointment System version 1.0 suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data in the WEB...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0392-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...
Chromium CVE-2021-21187: Insufficient data validation in URL formatting
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium CVE-2021-21164: Insufficient data validation in Chrome for iOS
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium CVE-2021-21163: Insufficient data validation in Reader Mode
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Update now! Chrome fix patches in-the-wild zero-day
The Microsoft Browser Vulnerability Research team has found and reported a vulnerability in the audio component of Google Chrome. Google has fixed this high-severity vulnerability CVE-2021-21166 in its Chrome browser and is warning Chrome users that an exploit exists in the wild for the...
UltimateKode Neo Billing Cross-Site Scripting Vulnerability
Envato Neo Billing is an Envato open source application. Provides a well-designed enterprise billing and accounting solution. UltimateKode Neo Billing before 3.5 suffers from a cross-site scripting XSS vulnerability that stems from the lack of proper validation of client-side data in the WEB...
Google Chrome Insufficient Data Validation Vulnerability
Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A data validation insufficiency vulnerability exists in Google Chrome versions prior to 89.0.4389.72. An attacker can leak cross-origin data via a crafted HTML page...
Google Chrome 访问控制错误漏洞
Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A data validation insufficiency vulnerability exists in Google Chrome versions prior to 89.0.4389.72. An attacker can leak cross-origin data via a crafted HTML page...
Google Chrome Insufficient Data Validation Vulnerability (CNVD-2021-16860)
Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A data validation insufficiency vulnerability exists in Google Chrome versions prior to 89.0.4389.72 in read mode. An attacker can leak cross-origin data via a...
Blackboard Collaborate Ultra 跨站脚本漏洞
Blackboard Collaborate Ultra is a Blackboard open source application. Provides an online course management platform. Blackboard Collaborate Ultra 20.02 suffers from a cross-site scripting vulnerability that stems from the WEB application's lack of proper validation of client data. An attacker can...
UltimateKode Neo Billing 跨站脚本漏洞
Envato Neo Billing is an Envato open source application. Provides a well-designed enterprise billing and accounting solution. UltimateKode Neo Billing before 3.5 suffers from a cross-site scripting XSS vulnerability that stems from the lack of proper validation of client-side data in the WEB...