16 matches found
CVE-2026-13961
Insufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security...
CVE-2026-13961
The CVE-2026-13961 issue affects Google Chrome on Windows, specifically DevTools. It arises from insufficient validation of untrusted input, allowing a remote attacker who convinces a user to perform certain UI gestures to potentially read sensitive data from process memory via a crafted HTML pag...
CVE-2025-13961
creationtimestamp| type| source ---|---|--- 2025-12-12 08:21:00+00:00| seen| https://gist.github.com/Darkcrai86/67d480a4d6410dc250328d8e656f125c...
CVE-2024-13961
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...
CVE-2024-13961
creationtimestamp| type| source ---|---|--- 2025-05-09 16:05:01+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loqsk3e5ehc2 2025-05-09 16:12:29+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114478753232862764 2025-07-29...
CVE-2024-13961 Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...
CVE-2024-13961
CVE-2024-13961 affects Avast Cleanup Premium (TuneupSvc) on Windows 10 Pro x64, version 24.2.16593.17810. A local attacker can create a symbolic link and abuse a TOCTTOU flaw in TuneupSvc to escalate privileges to SYSTEM and execute arbitrary code. No public exploit details are provided in the in...
CVE-2024-13961 Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...
CVE-2019-13961
creationtimestamp| type| source ---|---|--- 2025-04-12 21:02:15+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmngl2ugap2h...
📄 flatCore Cross Site Request Forgery
flatCore versions prior to 1.5 suffer from a cross site request forgery vulnerability. Exploit Title: flatCore CSRF PoC Replace Your Domain Name...
CVE-2017-13961
Rejected reason: This candidate is unused by its CNA...
@depup/strapi (=2.0.2-depup.0), @symbol-it/strapi-plugin-mailjet (>=0.0.1 <=0.0.2) +8 more potentially affected by CVE-2020-13961 via strapi (>=2.0.2 <=3.0.0)
strapi NPM version =2.0.2, =0.0.1, =0.0.34, =2.0.0, =2.0.0, =0.0.1-alpha.1, =0.0.1-alpha.2 - strapi-plugin-mailjet =0.0.2 Source cves: CVE-2020-13961 Source advisory: OSV:GHSA-65WV-528R-M892...
CVE-2018-13961
...
CVE-2018-13961
This CVE entry is rejected/not used as stated in the Initial Description.
CVE-2020-13961
CVE-2020-13961 affects Strapi before 3.0.2. A remote authenticated attacker can bypass security restrictions by exploiting templates stored in a global variable without sanitation, compelling an update to email templates for password reset and account confirmation via a crafted request. Impact is...
CVE-2017-13961
This CVE entry is rejected/not used and does not represent an active vulnerability.