SUSE CVE-2026-7907

Use after free in DOM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

Chromium: CVE-2026-7907 Use after free in DOM

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Linux Distros Unpatched Vulnerability : CVE-2026-7907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in DOM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...

CVE-2026-7907

Use after free in DOM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-7907

Use after free in DOM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-7907

creationtimestamp| type| source ---|---|--- 2026-05-06 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260507 2026-05-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260508...

CVE-2025-7907

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been classified as problematic. Affected is an unknown function of the file ruoyi-admin/src/main/resources/application-druid.yml of the component Druid. The manipulation leads to use of default credentials. It is possible to...

CVE-2025-7907

creationtimestamp| type| source ---|---|--- 2025-07-20 22:56:05+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lugl3snhkj2j 2025-07-22 03:54:24+00:00| seen| MISP/a3c5beab-b790-4171-8b4c-02c8a9678071 2025-09-09 11:53:40+00:00| seen| MISP/a3c5beab-b790-4171-8b4c-02c8a9678071...

CVE-2025-7907 yangzongzhuan RuoYi Druid application-druid.yml default credentials

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been classified as problematic. Affected is an unknown function of the file ruoyi-admin/src/main/resources/application-druid.yml of the component Druid. The manipulation leads to use of default credentials. It is possible to...

CVE-2025-7907

The CVE-2025-7907 entry concerns the yangzongzhuan RuoYi project (up to 4.8.1) with a Druid component issue in ruoyi-admin/src/main/resources/application-druid.yml. The vulnerability arises from manipulation that enables use of default credentials, and it is exploitable remotely. Public exploit i...

CVE-2025-7907 yangzongzhuan RuoYi Druid application-druid.yml default credentials

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been classified as problematic. Affected is an unknown function of the file ruoyi-admin/src/main/resources/application-druid.yml of the component Druid. The manipulation leads to use of default credentials. It is possible to...

CVE-2024-7907

A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu.85220230719. This issue affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument rtLogServer leads to command injection. The attack may be initiated remotely. T...

Linux Distros Unpatched Vulnerability : CVE-2014-7907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple use-after-free vulnerabilities in modules/screenorientation/ScreenOrientationController.cpp in Blink, as used in Google Chrome before 39.0.2171.65, all...

Linux Distros Unpatched Vulnerability : CVE-2016-7907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The imxfecdotx function in hw/net/imxfec.c in QEMU aka Quick Emulator does not properly limit the buffer descriptor count when transmitting packets, which allow...

CVE-2024-7907

creationtimestamp| type| source ---|---|--- 2024-08-18 19:07:11+00:00| seen| https://t.me/cvedetector/3470...

CVE-2024-7907 TOTOLINK X6000R cstecgi.cgi setSyslogCfg command injection

A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu.85220230719. This issue affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument rtLogServer leads to command injection. The attack may be initiated remotely. T...

Malicious code in wlwz-2312-7907 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 986eff549c21e30a3d6caf1ae2b6601ecd8c3a86c2bf1353db2df2c93d82bc01 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-888 Malicious code in wlwz-2312-7907 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 986eff549c21e30a3d6caf1ae2b6601ecd8c3a86c2bf1353db2df2c93d82bc01 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2014-7907

Multiple use-after-free vulnerabilities in modules/screenorientation/ScreenOrientationController.cpp in Blink, as used in Google Chrome before 39.0.2171.65, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger improper handling of ...

CVE-2020-7907

The CVE-2020-7907 issue affects the JetBrains Scala plugin prior to 2019.2.1, where artifact dependencies were resolved over unencrypted HTTP connections. This could allow an attacker to sniff network traffic and potentially obtain sensitive information. The vulnerability was addressed in 2019.2....