CVE-2026-11260

creationtimestamp| type| source ---|---|--- 2026-06-05 13:24:36+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918...

Linux Distros Unpatched Vulnerability : CVE-2026-11260

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HT...

CVE-2026-11260

CVE-2026-11260 : In Google Chrome (Chromium-based) prior to 149.0.7827.53, an inappropriate Permissions implementation allows a remote attacker to bypass the Content Security Policy via a crafted HTML page. Impact is a CSP bypass; no exploit details are provided in the source documents. A patch t...

CVE-2026-11260

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

CVE-2025-11260

creationtimestamp| type| source ---|---|--- 2025-11-13 09:26:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5itxob7wn2n...

CVE-2020-11260

An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2024-11260

creationtimestamp| type| source ---|---|--- 2025-02-21 06:17:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/4864 2025-02-21 08:03:24+00:00| seen| Telegram/SX5mR2JPsrUq7-YRqA-wnBvrcgSNJgHdhbhhd-g2zkrrdKMa 2025-02-21 09:44:57+00:00| seen| https://t.me/cvedetector/18633...

CVE-2024-11260

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to time-based SQL Injection via the activestatus parameter in all versions up to, and including, 6.6.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...

CVE-2024-11260

CVE-2024-11260 affects the WordPress plugin Events Manager – Calendar, Bookings, Tickets, and more! The Wordfence summary confirms a time-based SQL Injection via the active_status parameter in all versions up to 6.6.3, caused by insufficient escaping and incomplete query preparation, enabling una...

CVE-2020-11260

An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2020-11260

CVE-2020-11260 affects Qualcomm Snapdragon DIAG services (Snapdragon Compute/Industrial IOT/Mobile). The issue is an improper free of uninitialized memory in DIAG components. NVD notes LOCAL attack vector, low complexity, no authentication, and potential full impact on confidentiality, integrity,...

CVE-2019-11260

...

CVE-2018-11260

CVE-2018-11260 affects Android CAF WLAN components in Android releases built on the CAF Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android). The issue is described as an integer overflow during processing of an FILS connection request, which can lead to a buffer overflow when the key ...

CVE-2017-11260

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format EMF private data interpreted as a GIF image...

CVE-2017-11260

CVE-2017-11260 affects Adobe Acrobat Reader and related products. It is a memory corruption vulnerability in the image conversion engine when Enhanced Metafile data is interpreted as GIF, allowing arbitrary code execution on successful exploitation. Affected versions include Acrobat Reader 2017.0...

CVE-2017-11260

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format EMF private data interpreted as a GIF image...

Fedora Core 11 FEDORA-2009-11260 (wordpress-mu)

The remote host is missing an update to wordpress-mu announced via advisory FEDORA-2009-11260. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C...