Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/04 11:5 p.m.7 views

CVE-2026-11195

Inappropriate implementation in MHTML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.0019EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.8 views

CVE-2026-11195

Inappropriate implementation in MHTML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.0019EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-44612

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description Insufficient validation of untrusted input in Site Isolation allows a remote attacker who has compromised the renderer process to bypass site isolation using a crafted MHTML page. Site...

9.6CVSS5.8AI score0.00368EPSS
Exploits0References156
UbuntuCve
UbuntuCve
added 2026/05/06 7:16 p.m.13 views

CVE-2026-8012

Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

5.4CVSS5.9AI score0.00139EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/19 12:0 a.m.5 views

PT-2023-29705 · Unknown +1 · Archivebox +1

Name of the Vulnerable Software and Affected Versions: ArchiveBox affected versions not specified Description: The issue affects users of the wget extractor who view the content it outputs. If a user is logged in to the ArchiveBox admin site in the same browser session and views an archived...

7.4CVSS5.4AI score0.00422EPSS
Exploits1References18
CNNVD
CNNVD
added 2021/07/23 12:0 a.m.4 views

Landray EKP 跨站脚本漏洞

Landray EKP is an office automation solution that enables companies to easily model and manage... A cross-site scripting vulnerability in the /sys/attachment/uploaderServlet component of Landray EKP V12.0.9.R.20160325 could allow an attacker to execute arbitrary web script or HTML via a crafted...

5.4CVSS5.8AI score0.0052EPSS
Exploits1References2
Rows per page
Query Builder