4 matches found
CVE-2026-57963
The CVE describes a vulnerability in Thunderbird’s chat UI where an attacker who can send HTML chat messages (via Matrix or XMPP) can inject arbitrary styled content, phishing links, and CSS that manipulates the chat UI. Affected product: Thunderbird (chat UI component). Root cause: HTML/CSS cont...
EUVD-2023-32329
Malicious code in bioql PyPI...
CVE-2025-0741
EmbedAI versions 2.1 and below are affected by an improper access control vulnerability that lets an authenticated attacker write messages into other users’ chats by altering the chat_id parameter in the POST /embedai/chats/send_message endpoint. Affected component: EmbedAI chat messages API. Roo...
CVE-2023-28686
Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...