33 matches found
MINI-RCR4-P673-7363
Bulletin has no description...
MINI-G8PF-FJ67-7363
Bulletin has no description...
CVE-2026-7363 vulnerabilities
Vulnerabilities for packages: chromium...
Chromium: CVE-2026-7363 Use after free in Canvas
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Linux Distros Unpatched Vulnerability : CVE-2026-7363
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Canvas in Google Chrome on Linux, ChromeOS prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a...
CVE-2026-7363
Use after free in Canvas in Google Chrome on Linux, ChromeOS prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-7363
Use after free in Canvas in Google Chrome on Linux, ChromeOS prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-7363
creationtimestamp| type| source ---|---|--- 2026-04-28 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260429 2026-04-29 01:20:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mklwnjlgsb2h 2026-05-01 02:56:14+00:00| seen|...
MINI-57H5-7363-PRXP
Bulletin has no description...
MiracleLinux 8 : tomcat-9.0.62-27.el8 (AXSA:2024-7363:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7363:01 advisory. Apache Commons FileUpload: FileUpload DoS with excessive parts CVE-2023-24998 tomcat: not including the secure attribute causes information disclosu...
CVE-2025-7363
The TitleIcon extension for MediaWiki is vulnerable to stored XSS through the titleiconunicode parser function. User input passed to this function is wrapped in an HtmlArmor object without sanitization and rendered directly into the page header, allowing attackers to inject arbitrary JavaScript...
CVE-2025-7363
creationtimestamp| type| source ---|---|--- 2025-07-10 14:18:58+00:00| seen| Telegram/Oe0qoM8hEMHoP1XQ7W6-oqiMP31ASNvAnpa3YbmrnDuYpio...
CVE-2025-7363
The TitleIcon extension for MediaWiki is vulnerable to stored XSS through the titleiconunicode parser function. User input passed to this function is wrapped in an HtmlArmor object without sanitization and rendered directly into the page header, allowing attackers to inject arbitrary JavaScript...
CVE-2025-7363
The CVE-2025-7363 entry concerns the MediaWiki TitleIcon extension. Affected versions include 1.39.X before 1.39.13, 1.42.X before 1.42.7, and 1.43.X before 1.43.2. The root cause is un-sanitized input passed to the #titleicon_unicode parser function, wrapped in an HtmlArmor object and rendered i...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : PAM-PKCS#11 vulnerabilities (USN-7363-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7363-1 advisory. Marcus Rckert and Matthias Gerstner discovered that PAM-PKCS11 did not properly handle certain...
CVE-2024-7363 SourceCodester Tracking Monitoring Management System manage_person.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Tracking Monitoring Management System 1.0. Affected is an unknown function of the file /manageperson.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2024-7363 SourceCodester Tracking Monitoring Management System manage_person.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Tracking Monitoring Management System 1.0. Affected is an unknown function of the file /manageperson.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
Weak Password Vulnerability in Ruckus 7363 Multimedia Hotzone Wireless AP
The Ruckus 7363 is a wireless product from RUCKUS. A weak password vulnerability exists in the Ruckus 7363 Multimedia Hotzone Wireless AP, which can be exploited by an attacker to log in to the system backend and perform unauthorized operations...
CVE-2020-7363 UCWeb UC Browser Address Bar Spooofing
User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects UCWeb's UC Browser version 13.0.8 and prior versions...
CVE-2020-7363
CVE-2020-7363 affects UCWeb UC Browser versions 13.0.8 and earlier, enabling UI/address-bar spoofing through JavaScript timing tricks that can mislead users about the page origin. Exploitation requires visiting a page hosting executable JavaScript; it can trigger in-browser content or popups that...