50 matches found
EUVD-2021-2078
Malware in sbrugna...
EUVD-2018-13591
Malware in sbrugna...
EUVD-2022-25140
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2019-17068
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PuTTY before 0.73 mishandles the bracketed paste mode protection mechanism, which may allow a session to be affected by malicious clipboard content...
CVE-2021-41086
jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...
CVE-2021-37860
Mattermost 5.38 and earlier fails to sufficiently sanitize clipboard contents, which allows a user-assisted attacker to inject arbitrary web script in product deployments that explicitly disable the default CSP...
CVE-2018-21077
An issue was discovered on Samsung mobile devices with M6.0, N7.x, and O8.x software. There is a Clipboard content disclosure in the locked state because the keyboard may be used during an emergency call. The Samsung ID is SVE-2017-11107 April 2018...
CVE-2018-21059
An issue was discovered on Samsung mobile devices with N7.x and O8.x software. There is Clipboard content visibility in the locked state via the emergency contact picker. The Samsung ID is SVE-2018-11806 September 2018...
Kanboard 跨站脚本漏洞
Kanboard is a suite of open source visual task board software. The software is able to customize the panels according to the business. A cross-site scripting vulnerability exists in Kanboard 1.2.28 and earlier versions, which stems from improper handling of elements under the contentEditable...
SUSE CVE-2018-5172
The Live Bookmarks page and the PDF viewer can run injected script content if a user pastes script from the clipboard into them while viewing RSS feeds or PDF files. This could allow a malicious site to socially engineer a user to copy and paste malicious script content that could then run with t...
SUSE CVE-2019-13741
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content...
SUSE CVE-2019-17068
PuTTY before 0.73 mishandles the "bracketed paste mode" protection mechanism, which may allow a session to be affected by malicious clipboard content...
SUSE CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...
DEBIAN-CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...
Input validation
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...
CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...
CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...
CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...
CVE-2022-1867
CVE-2022-1867 affects Google Chrome/Chromium upstream: insufficient validation of untrusted input in Data Transfer allows bypass of same-origin policy via crafted clipboard content. Affected: Chrome/Chromium before 102.0.5005.61. Remediation: update to Chrome/Chromium 102.0.5005.61 or later; Debi...
CVE-2022-1867
Insufficient validation of untrusted input in Data Transfer in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass same origin policy via a crafted clipboard content...