Lucene search
K

79 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:39 p.m.10 views

CVE-2026-7778

An issue that could allow a dashboard configuration to be viewed from outside of the authorized organization scope has been resolved. This is an instance of CWE-269: Improper Privilege Management, and has an estimated CVSS score of CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N 5.0, Medium. This...

5CVSS5.3AI score0.00168EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.13 views

CVE-2026-10017

Out of bounds read in Headless in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.8AI score0.00185EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/28 10:25 p.m.37 views

CVE-2026-9995

Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00296EPSS
Exploits0References2
OSV
OSV
added 2026/05/11 6:17 a.m.6 views

MINI-7778-WRG3-7MVX

Bulletin has no description...

5.3CVSS5.7AI score0.00179EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/06 6:12 p.m.7 views

CVE-2026-7928

Use after free in WebRTC in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00338EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/05 1:44 p.m.6 views

CVE-2026-7778

An issue that could allow a dashboard configuration to be viewed from outside of the authorized organization scope has been resolved. This is an instance of CWE-269: Improper Privilege Management, and has an estimated CVSS score of CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N 5.0, Medium. This...

5CVSS5.7AI score0.00168EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.4 views

Mozilla Firefox ESR < 52.2

The version of Firefox ESR installed on the remote Windows host is prior to 52.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-16 advisory. - A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads...

9.8CVSS7.1AI score0.05216EPSS
Exploits6References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-7778

Malware in sbrugna...

6.5CVSS6.4AI score0.01513EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-0963

Malware in sbrugna...

5CVSS6.4AI score0.01757EPSS
Exploits0References7
Patchstack
Patchstack
added 2025/08/15 11:22 p.m.7 views

WordPress Icons Factory plugin <= 1.6.12 - Missing Authorization to Unauthenticated Arbitrary File Deletion via delete_files() Function vulnerability

Missing Authorization to Unauthenticated Arbitrary File Deletion via deletefiles Function vulnerability discovered by johska in WordPress Plugin Icons Factory versions = 1.6.12...

9.8CVSS6.7AI score0.00628EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-7778 Malicious code in @diotobtea/laboriosam-esse-eaque (npm)

The package @diotobtea/laboriosam-esse-eaque was found to contain malicious code...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2024/08/22 9:29 a.m.32 views

CVE-2024-7778 Orbit Fox by ThemeIsle <= 2.10.36 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.10.36 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access...

6.4CVSS0.0031EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/08/22 9:29 a.m.12 views

CVE-2024-7778 Orbit Fox by ThemeIsle <= 2.10.36 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.10.36 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access...

6.4CVSS5.8AI score0.0031EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/08/22 12:0 a.m.16 views

WordPress Orbit Fox by ThemeIsle Plugin <= 2.10.36 is vulnerable to Cross Site Scripting (XSS)

Software Orbit Fox by ThemeIsle Type Plugin Vulnerable versions = 2.10.36 Fixed in 2.10.37 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-7778 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID cd6e92d6eaf7 Credits wesley wcraft...

6.4CVSS5.8AI score0.0031EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/12/14 12:0 a.m.27 views

RHEL 8 : postgresql:10 (RHSA-2023:7778)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:7778 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Buffer overrun from integer overflow in arra...

8.8CVSS7.6AI score0.04322EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2022/02/09 11:14 p.m.3 views

@azteam/monitor (>=1.0.1 <=1.0.9), @bb-cli/e2e-bb-test (>=2.8.3-5 <=2.8.4) +217 more potentially affected by CVE-2020-7778 via systeminformation (>=3.30.6 <=4.30.11)

systeminformation NPM version =3.30.6, =1.0.1, =2.8.3-5, =1.0.7, =1.0.0, =1.0.148 and more Source cves: CVE-2020-7778 Source advisory: OSV:GHSA-8J36-Q8X7-PM6Q...

7.5CVSS7.1AI score0.02393EPSS
Exploits1
Packet Storm
Packet Storm
added 2022/01/31 12:0 a.m.186 views

Backdoor.Win32.Tiny.c Code Execution

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/c61733c6bcbbb11cee634e0a3fd672e9.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Tiny.c Vulnerability: Unauthenticated Remote Command Execution Description: The malwa...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2018-0018)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.7AI score0.18756EPSS
Exploits68References10
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.193 views

Backdoor.Win32.RmtSvc.l Denial Of Service

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/38f9ee3ce51ead0ce6bf2edcaa462611.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.RmtSvc.l Vulnerability: Remote Denial of Service Description: The malware listens on...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2017:2235-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.18756EPSS
Exploits29References19
Rows per page
Query Builder