CVE-2026-1915

The Simple Plyr plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'poster' parameter in the 'plyr' shortcode in all versions up to, and including, 0.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2022-1915

The WP Zillow Review Slider WordPress plugin before 2.4 does not escape a settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

CVE-2020-1915

An out-of-bounds read in the JavaScript Interpreter in Facebook Hermes prior to commit 8cb935cd3b2321c46aa6b7ed8454d95c75a7fca0 allows attackers to cause a denial of service attack or possible further memory corruption via crafted JavaScript. Note that this is only exploitable if the application...

CVE-2002-1915

tip on multiple BSD-based operating systems allows local users to cause a denial of service execution prevention by using flock to lock the /var/log/acculog file...

Fedora: Security Advisory (FEDORA-2025-762804f16e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated chromium-browser-stable packages fix security vulnerabilities

High CVE-2025-1914: Out of bounds read in V8. Medium CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools. Medium CVE-2025-1916: Use after free in Profiles. Medium CVE-2025-1917: Inappropriate Implementation in Browser UI. Medium CVE-2025-1918: Out of bounds read...

OPENSUSE-SU-2025:0084-1 Security update for chromium

Chromium was updated to 134.0.6998.35 stable release 2025-03-04 boo1238575: CVE-2025-1914: Out of bounds read in V8 CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools CVE-2025-1916: Use after free in Profiles CVE-2025-1917: Inappropriate Implementation in Brows...

Chromium: CVE-2025-1915 Improper Limitation of a Pathname to a Restricted Directory in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2025-1915

creationtimestamp| type| source ---|---|--- 2025-03-05 04:32:17+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6484 2025-03-05 06:04:06+00:00| seen| https://t.me/cvedetector/19577 2025-03-05 07:19:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljmgv554eh2s 2025-03-06...

CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

CVE-2025-1915

CVE-2025-1915 affects Google Chrome on Windows with a DevTools path handling issue. An attacker could entice a user to install a crafted Chrome Extension to bypass file access restrictions, enabling high-impact access (CVE score 8.1, HIGH) when the user is convinced to install the malicious exten...

CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

Oracle Linux 9 : emacs (ELSA-2025-1915)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-1915 advisory. 1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025 Tenable has extracted the...

RHSA-2025:1915

creationtimestamp| type| source ---|---|--- 2025-02-27 10:26:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5662...

Mitsubishi Electric MELSEC-Q/L Series Incorrect Pointer Scaling (CVE-2024-1915)

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet. This plugin only works with Tenable.ot. Please...

CVE-2024-1915

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet...