CVE-2025-9866

CVE-2025-9866 affects Google Chrome/Chromium: an incorrect implementation in Chrome extensions allows a remote attacker to bypass the content security policy via a crafted HTML page. Impact: CSP bypass; affected component is the Extensions subsystem. Vulnerable versions are Chrome before 140.0.73...

Google Chromium Input Validation Error Vulnerability

Google Chromium is an open source web browser from Google, Inc. An input validation error vulnerability previously existed in Google Chromium version 88.0.4324.96, which stemmed from the discovery of insufficient security for policy enforcement in the program extension component...

CVE-2020-8500

In Artica Pandora FMS 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the Updater or Extension component. NOTE: The vendor reports that this is intended functionality...

Code injection

In Artica Pandora FMS 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the Updater or Extension component. NOTE: The vendor reports that this is intended functionality...

CVE-2020-8500

In Artica Pandora FMS 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the Updater or Extension component. NOTE: The vendor reports that this is intended functionality...

CVE-2020-8500

In Artica Pandora FMS 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the Updater or Extension component. NOTE: The vendor reports that this is intended functionality...

PT-2020-20179 · Artica · Artica Pandora Fms

Name of the Vulnerable Software and Affected Versions: Artica Pandora FMS version 7.42 Description: The issue allows Web Admin users to execute arbitrary code by uploading a .php file via the Updater or Extension component. However, the vendor reports that this functionality is intended...