CVE-2026-7939

An inappropriate implementation flaw was found in the SanitizerAPI component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=492963096...

Chromium: CVE-2026-7939 Inappropriate implementation in SanitizerAPI

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

DEBIAN-CVE-2026-7939

Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-7939

CVE-2026-7939 affects Google Chrome’s SanitizerAPI: an inappropriate implementation allows UXSS via a crafted HTML page, prior to Chrome 148.0.7778.96. Remote script/HTML injection is possible. Remediation is to upgrade to Chrome 148.0.7778.96 or later (as per Chrome stable release notes and Debi...

CVE-2026-7939

Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-7939

creationtimestamp| type| source ---|---|--- 2026-05-06 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260507 2026-05-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260508...

MAL-2025-7939 Malicious code in @framgia/viblo-accounts-auth-web (npm)

The package @framgia/viblo-accounts-auth-web was found to contain malicious code...

CVE-2025-7939 jerryshensjf JPACookieShop 蛋糕商城JPA版 GoodsController.java addGoods unrestricted upload

A vulnerability was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0. It has been classified as critical. Affected is the function addGoods of the file GoodsController.java. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely...

Linux Distros Unpatched Vulnerability : CVE-2016-7939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The GRE parser in tcpdump before 4.9.0 has a buffer overflow in print-gre.c, multiple functions. CVE-2016-7939 Note that Nessus relies on the presence of the...

CVE-2024-7939

creationtimestamp| type| source ---|---|--- 2024-09-02 15:33:19+00:00| seen| https://t.me/cvedetector/4633...

CVE-2024-7939 Stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

BELL-CVE-2016-7939 CVE-2016-7939 does not affect BellSoft software

Bulletin has no description...

K49144112: tcpdump vulnerabilities CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, and CVE-2016-7939

Security Advisory Description CVE-2016-7934 The RTCP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtcpprint. CVE-2016-7935 The RTP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtpprint. CVE-2016-7936 The UDP parser in tcpdump before 4.9.0 has a buffer...

Slackware: Security Advisory (SSA:2017-041-04)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-7939

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. This is a problem in Zope...

CVE-2020-7939

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. This is a problem in Zope...

CVE-2020-7939

SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. This is a problem in Zope...

CVE-2020-7939

CVE-2020-7939 is a Plone/DTML SQL injection vulnerability, affecting Plone 4.0–5.2.1 (problem in Zope). The connected documents describe the issue as SQL injection in DTML or in connection objects, enabling unwanted SQL queries. No explicit exploit status is provided in the documents, and the mat...

CVE-2018-7939

CVE-2018-7939 specifies a Factory Reset Protection (FRP) bypass vulnerability in multiple Huawei/Honor smartphones (e.g., G9 Lite, Honor 5A/6X/8 and various build versions) where enabling TalkBack during FRP reconfiguration disables the boot wizard and bypasses FRP. Affected builds are listed in ...

Security Advisory - FRP Bypass Vulnerability in Huawei Smart Phones

There is Factory Reset Protection FRP bypass security vulnerability in some Huawei smart phones. When re-configuring the mobile phone using the factory reset protection FRP function, an attacker can disable the boot wizard by enable the talkback function. As a result, the FRP function is bypassed...