Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-15356

Malware in sbrugna...

8.8CVSS9.1AI score0.01109EPSS
Exploits0References5
Veracode
Veracode
added 2020/12/06 3:6 a.m.19 views

HTML Injection

Google Chrome is vulnerable to HTML injection. A remote attacker could perform a Dangling Markup Injection attack via a crafted HTML page due to the affected DevTools component...

8.8CVSS2.3AI score0.01109EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2019/02/19 5:29 p.m.12 views

CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

8.8CVSS8.3AI score0.01109EPSS
Exploits0References3
OSV
OSV
added 2019/02/19 5:29 p.m.2 views

DEBIAN-CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

8.8CVSS8.5AI score0.01109EPSS
Exploits0References1
OSV
OSV
added 2019/02/19 5:29 p.m.8 views

CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

8.8CVSS8.8AI score
Exploits0References3
Prion
Prion
added 2019/02/19 5:29 p.m.12 views

Design/Logic Flaw

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

6.8CVSS8.5AI score0.01109EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2019/02/19 5:29 p.m.24 views

CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

8.8CVSS7.2AI score0.01109EPSS
Exploits0References4
OSV
OSV
added 2019/02/19 5:29 p.m.3 views

UBUNTU-CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

8.8CVSS7.3AI score0.01109EPSS
Exploits0References5
Cvelist
Cvelist
added 2019/02/19 5:0 p.m.24 views

CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

7.7AI score0.01109EPSS
Exploits0References3
CVE
CVE
added 2019/02/19 5:0 p.m.127 views

CVE-2019-5783

CVE-2019-5783 corresponds to an "insufficient validation of untrusted input" vulnerability in Google Chrome’s DevTools prior to version 72.0.3626.81. The flaw enables a remote attacker to perform a Dangling Markup Injection attack by delivering a crafted HTML page, as described in the public CVE ...

8.8CVSS7.6AI score0.01109EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2019/02/19 5:0 p.m.25 views

CVE-2019-5783

Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted HTML page...

8.8CVSS8.6AI score0.01109EPSS
Exploits0
Hacker One
Hacker One
added 2017/01/19 11:35 p.m.169 views

HackerOne: Google Analytics could be used as CSP bypass for data exfiltration on hackerone.com

Greetings, I believe I may have found a way to bypass CSP on hackerone.com The issue lies here: img-src 'self' data: www.google-analytics.com As you can imagine, how can image tags be used maliciously here to this safe site? Well, as you know, on google-analytics.com we have the ability to host...

7.2AI score
Exploits0
Rows per page
Query Builder