81 matches found
CVE-2018-1000815
Brave Software Inc. Brave version version 0.22.810 to 0.24.0 contains a Other/Unknown vulnerability in function ContentSettingsObserver::AllowScript in contentsettingsobserver.cc that can result in Websites can run inline JavaScript even if script is blocked, making attackers easier to track user...
EUVD-2018-2013
Malware in sbrugna...
EUVD-2023-56246
Malicious code in bioql PyPI...
Brave Software: Prompt Injection via GitHub Patch in Brave AI Chat (Leo)
Component: Brave AI Chat brave-core/components/aichat/ Severity: High Confirmed ability to override AI instructions and persona via fetched content Vulnerability Summary The Brave AI Chat feature allows fetching .patch files from GitHub pull request pages to use as context. A combination of...
Brave Software: Incorrect security UI of files' download source on brave MacOS
The incorrect display of the download source in the Brave download alert was identified. Instead of displaying the actual source of the downloaded file, the browser displayed the referrer header value, which could have misled users into believing the file was from a trusted source...
Brave Software: Brave Android: Incorrect URL Eliding in Brave Shields Pop Up
A vulnerability was discovered in the Brave Android browser where the URL was not properly elided from the front when displayed in the Brave Shields pop-up. This could have led to URL confusion or spoofing for users. The issue was not present in the desktop version of Brave...
Brave Software: UAF on JSEthereumProvider
A UAF Use After Free vulnerability was discovered in the renderer implementation of the Ethereum wallet. This vulnerability allowed an attacker to trigger a crash in the renderer process and potentially execute arbitrary code...
Brave Software: UI spoofing by showing sms:/tel: dialog on another website
A vulnerability was discovered in Brave for iOS version 1.45.2 that allowed for UI spoofing by showing an sms:/tel: dialog on another website without displaying the caller origin, potentially leading to user confusion and deception...
Brave Software: Brave Shield for iOS is weak against IDN homograph attacks
A vulnerability was found in Brave Shield for iOS, where it was weak against IDN homograph attacks. This allowed attackers to deceive users into believing that a site is legitimate by showing a different domain name in the Brave Shield panel. The vulnerability affected Brave for iOS version 1.45....
Brave Software: Persistent user tracking is possible using window.caches, by avoiding Brave Shields
A vulnerability was discovered in Brave for iOS version 1.41.1 that allowed for persistent user tracking using window.caches, even when Brave Shields were enabled to block cookies. This could potentially allow for user tracking without their consent or knowledge...
Brave Search wants to replace Google’s biased search results with yours
Brave Search, Brave Softwares privacy search engine, just turned one. To celebrate, the company says it is moving the search engine out of its beta phase to become the default search engine for all Brave browser users. Goodbye, Google? Not entirely. In May 2015, Mozilla alumni Brendan Eich and...
Malicious code in brave-ios (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aacc360cc09bd65e62d9c77b71ca5869656bf12e6dfc5bd4af918c92fd090ed8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Brave Software: XSS on internal: privileged origin through reader mode
A vulnerability in Brave iOS versions 1.32.3 and higher allowed for XSS attacks on the privileged origin internal://local through the combination of two weaknesses. The first weakness was the exposure of uuidKey through the REFERER header due to the lack of referrer header protection in the...
Brave Software: Universal XSS with Playlist feature
A Universal XSS vulnerability was discovered in Brave iOS versions 1.32.3 and higher. The vulnerability was caused by three weaknesses, including the exposure of UserScriptManager.securityToken and UserScriptManager.messageHandlerToken, as well as a UXSS vulnerability in PlaylistHelper through...
Brave Software: New XSS vector in ReaderMode with %READER-TITLE-NONCE%
A new XSS vulnerability was discovered in Brave iOS 1.31.1 and higher, which allowed attackers to execute malicious scripts on ReaderMode pages. The vulnerability was caused by a relaxation of the CSP rule, which allowed scripts with nonce-%READER-TITLE-NONCE% to be executed. Attackers could...
Brave Software: Information disclosure
Vulnerability tested on:- Brave 1.29.81 Chromium: 93.0.4577.82 Official Build 64-bit Vulnerability description:- For security measures and for privacy purposes, Brave has the ability to open a normal tab of the Brave when we navigate to: chrome://wallet, chrome://history etc. due to the reason th...
Brave Software: Information disclosure-Referer leak
Assigned to: Brave Assigned by: Kirtikumar Anandrao Ramchandani Assigned on: 13/09/2021 Browser information used to test Up to date: Brave 1.29.79 Chromium: 93.0.4577.63 Official Build 64-bit Revision ff5c0da2ec0adeaed5550e6c7e98417dac77d98a-refs/branch-heads/4577@1135 OS Windows 10 OS Version 20...
Brave Software: unclaimed s3 bucket takeover in the 3 js file located on the github page of brave software
Summary: There is a unclaimed s3 bucket i.e brave-extensions.s3.amazonaws.com located in the 3 .js file on official brave software github page https://github.com/search?q=org%3Abrave+brave-extensions+language%3AJavaScript&type=Codethe attacker can takeover the bucket and create file that is used ...
Brave Software: DNS Leaks when using any VPN Browser extension with Brave Shield enabled
If Brave Shield is enabled alongside with a VPN Chrome extension and adblocking is enabled, some DNS requests may not be forwarded through the VPN tunnel...
Brave Software: XSS on Brave Today through custom RSS feed
A vulnerability was discovered in Brave iOS's custom RSS feed feature that allowed for cross-site scripting XSS attacks. Attackers could add a malicious RSS feed containing a javascript: URL, which could execute arbitrary code when a user clicked on a link in Brave Today. The vulnerability was...