Linux Distros Unpatched Vulnerability : CVE-2026-8390

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.0.3. CVE-2026-8390 Note that Nessus relies on the presence ...

CVE-2026-8390

creationtimestamp| type| source ---|---|--- 2026-05-12 15:50:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlo5cthkad2p 2026-05-13 06:28:15+00:00| seen| https://www.acn.gov.it/portale/w/aggiornamenti-di-sicurezza-per-mozilla-firefox 2026-05-13 06:44:38+00:00| seen|...

CVE-2026-8390

Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150.0.3...

CVE-2026-8390

Mozilla Firefox is affected by a use-after-free in the JavaScript: WebAssembly component (CVE-2026-8390). The issue resides in WebAssembly within Firefox’s JavaScript engine and was fixed in version 150.0.3. Affected products are Firefox releases prior to 150.0.3, across platforms referenced in t...

Medium: pcre

Issue Overview: Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular...

ChakraCore RCE Vulnerability

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...

CVE-2020-8390

CVE-2020-8390 entry is rejected and not used as an active vulnerability entry.

CVE-2017-18672

An issue was discovered on Samsung mobile devices with L5.0/5.1, M6.0, and N7.x software. Because of incorrect exception handling for Intents, a local attacker can force a reboot within framework.jar. The Samsung ID is SVE-2017-8390 May 2017...

Code injection

An issue was discovered on Samsung mobile devices with L5.0/5.1, M6.0, and N7.x software. Because of incorrect exception handling for Intents, a local attacker can force a reboot within framework.jar. The Samsung ID is SVE-2017-8390 May 2017...

CVE-2017-18672

An issue was discovered on Samsung mobile devices with L5.0/5.1, M6.0, and N7.x software. Because of incorrect exception handling for Intents, a local attacker can force a reboot within framework.jar. The Samsung ID is SVE-2017-8390 May 2017...

CVE-2017-18672

CVE-2017-18672 affects Samsung mobile devices running Lollipop (5.0/5.1), Marshmallow (6.0), and Nougat (7.x). The issue arises from incorrect exception handling for Intents in framework.jar, allowing a local attacker to force a reboot. References across multiple feeds corroborate the same vulner...

Huawei EulerOS: Security Advisory for pcre (EulerOS-SA-2018-1167)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for pcre (EulerOS-SA-2019-1733)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-8390

qdPM 9.1 suffers from Cross-site Scripting XSS in the searchkeywords parameter...

CVE-2019-8390

qdPM 9.1 suffers from Cross-site Scripting XSS in the searchkeywords parameter...

CVE-2019-8390

qdPM 9.1 is affected by Cross-site Scripting in the search[keywords] parameter. The root cause is inadequate sanitization of user input in the search field, enabling an attacker to inject and execute script code in a victim’s browser. Reported impact includes potential session hijacking, defaceme...

qdPM 9.1 - search[keywords] Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications =========================================================================================== Exploit Title: qdPM 9.1 - 'searchkeywords' XSS Injection CVE: CVE-2019-8390 Exploit Author: Mehmet EMIROGLU Vendor Homepage: http://qdpm.net Software...

qdPM 9.1 - 'search[keywords]' Cross-Site Scripting

=========================================================================================== Exploit Title: qdPM 9.1 - 'searchkeywords' XSS Injection CVE: CVE-2019-8390 Date: 14-02-2019 Exploit Author: Mehmet EMIROGLU Vendor Homepage: http://qdpm.net Software Link:...

CVE-2018-8390

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-8359,...

Remote code execution

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...