Google Chrome Security Bypass Vulnerability (CNVD-2026-18794)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome, which can be exploited by attackers to bypass security restrictions...

CVE-2019-18794

The BASS Audio Library 2.4.14 under Windows is prone to a BASSStreamCreateFile Use after Free vulnerability via a crafted .ogg file. An attacker can exploit this to gain access to sensitive information that may aid in further attacks. A failure in exploitation leads to denial of service...

CVE-2019-18794

Affected software: BASS Audio Library 2.4.14 on Windows. Vulnerability: BASS_StreamCreateFile Use after Free triggered by a crafted .ogg file. Impact: information disclosure and potential for further attacks; exploitation failure may cause denial of service. Root cause: use-after-free in the vuln...

CVE-2017-18794

creationtimestamp| type| source ---|---|--- 2020-04-21 23:29:21+00:00| seen| https://t.me/cibsecurity/11484...

CVE-2017-18794

Certain NETGEAR devices are affected by command injection. This affects R6300v2 before 1.0.4.810.0.77, R6400 before 1.0.1.24, R6700 before 1.0.1.26, R7000 before 1.0.9.10, R7100LG before 1.0.0.32, R7900 before 1.0.1.18, R8000 before 1.0.3.54, R8500 before 1.0.2.100, and D6100 before 1.0.0.500.0.5...

CVE-2017-18794

CVE-2017-18794 applies to NETGEAR devices with command-injection risk. Affected models and firmware ranges include R6300v2 prior to 1.0.4.8_10.0.77, R6400 prior to 1.0.1.24, R6700 prior to 1.0.1.26, R7000 prior to 1.0.9.10, R7100LG prior to 1.0.0.32, R7900 prior to 1.0.1.18, R8000 prior to 1.0.3....

CVE-2017-18794

Certain NETGEAR devices are affected by command injection. This affects R6300v2 before 1.0.4.810.0.77, R6400 before 1.0.1.24, R6700 before 1.0.1.26, R7000 before 1.0.9.10, R7100LG before 1.0.0.32, R7900 before 1.0.1.18, R8000 before 1.0.3.54, R8500 before 1.0.2.100, and D6100 before 1.0.0.500.0.5...

CVE-2018-18794

The CVE-2018-18794 entry corresponds to a Cross-Site Request Forgery (CSRF) vulnerability in School Event Management System 1.0. Public documents detail CSRF via user/controller.php?action=edit and related admin-update flows. Exploitation evidence shows abuse of session state (checking ACCOUNT_ID...

School Event Management System 1.0 - Cross-Site Request Forgery (Update Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: School Event Management System 1.0 - Cross-Site Request Forgery Update Admin Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

School Event Management System 1.0 Cross Site Request Forgery

Exploit Title: School Event Management System 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

Apple WebKit build 18794 - WebCore Remote Denial of Service

source: https://www.securityfocus.com/bid/22059/info Apple WebKit is prone to a denial-of-service vulnerability. Attackers may exploit this issue by enticing victims into opening a malicious HTML document with an application using the affected framework. Successful exploits will result in...