Lucene search
+L

423 matches found

Cvelist
Cvelist
added 2016/12/18 3:34 a.m.26 views

CVE-2016-5190

Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled object lifecycles during shutdown, which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages...

7.1AI score0.00911EPSS
Exploits0References5
Cvelist
Cvelist
added 2016/12/18 3:34 a.m.19 views

CVE-2016-5181

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android permitted execution of v8 microtasks while the DOM was in an inconsistent state, which allowed a remote attacker to inject arbitrary scripts or HTML UXSS via crafted HTML pages...

7AI score0.01978EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2016/12/18 3:34 a.m.37 views

CVE-2016-5189

Removed by vendor...

6.5CVSS8.1AI score0.01012EPSS
Exploits0
CVE
CVE
added 2016/12/18 3:34 a.m.92 views

CVE-2016-5182

CVE-2016-5182 is a Google Chrome/Chromium Blink vulnerability described as a heap overflow in the ImageBitmap/bitmap handling path that could be triggered by a crafted HTML page. The issue allows a remote attacker to potentially achieve remote code execution on the affected host. Affected version...

8.8CVSS8.7AI score0.01282EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2016/12/18 3:34 a.m.28 views

CVE-2016-5193

Removed by vendor...

4.3CVSS7.4AI score0.01216EPSS
Exploits0
Debian CVE
Debian CVE
added 2016/12/18 3:34 a.m.35 views

CVE-2016-5185

Removed by vendor...

8.8CVSS9.3AI score0.01122EPSS
Exploits0
Debian CVE
Debian CVE
added 2016/12/18 3:34 a.m.52 views

CVE-2016-5182

Removed by vendor...

8.8CVSS9.3AI score0.01282EPSS
Exploits0
Debian CVE
Debian CVE
added 2016/12/18 3:34 a.m.46 views

CVE-2016-5192

Removed by vendor...

6.5CVSS8.1AI score0.01197EPSS
Exploits0
Cvelist
Cvelist
added 2016/12/18 3:34 a.m.28 views

CVE-2016-5188

Multiple issues in Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux allow a remote attacker to spoof various parts of browser UI via crafted HTML pages...

5.8AI score0.00971EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2016/12/17 12:0 a.m.50 views

KLA10914 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome prior to 54.0.2840.59. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, inject code or possibly cause denial of service. Below is a complete list of vulnerabilities: 1. Missed...

8.8CVSS9AI score0.01978EPSS
Exploits0References5
Hacker One
Hacker One
added 2016/11/16 4:34 p.m.27 views

Brave Software: links the user may download can be a malicious files

Hi, Summary: This vulnerability is pretty simple and pretty dangerous at the same time Almost any link the user tries to download it's extension is set according to the file extension in the path if the path is / then it download's it according to the domain name Eg: 1...

6.8AI score
Exploits0
Prion
Prion
added 2016/11/14 11:20 p.m.18 views

Sql injection

SQL injection vulnerability in the "Site Browser HTML pages" screen in dotCMS before 3.3.1 allows remote authenticated attackers to execute arbitrary SQL commands via the orderby parameter...

6.5CVSS8.4AI score0.01995EPSS
Exploits3References5Affected Software1
OpenVAS
OpenVAS
added 2016/11/02 12:0 a.m.32 views

dotCMS < 3.3.1 Multiple SQLi Vulnerabilities - Active Check

dotCMS is prone to multiple SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:dotcms:dotcms"; i...

9.8CVSS7.3AI score0.0275EPSS
Exploits9References1
UbuntuCve
UbuntuCve
added 2016/10/17 12:0 a.m.29 views

CVE-2016-5181

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android permitted execution of v8 microtasks while the DOM was in an inconsistent state, which allowed a remote attacker to inject arbitrary scripts or HTML UXSS via crafted HTML pages...

6.1CVSS7.1AI score0.01978EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/10/17 12:0 a.m.20 views

CVE-2016-5182

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android had insufficient validation in bitmap handling, which allowed a remote attacker to potentially exploit heap corruption via crafted HTML pages...

8.8CVSS7.3AI score0.01282EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/10/17 12:0 a.m.25 views

CVE-2016-5185

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal, which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages...

8.8CVSS7.2AI score0.01122EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/10/17 12:0 a.m.19 views

CVE-2016-5187

Google Chrome prior to 54.0.2840.85 for Android incorrectly handled rapid transition into and out of full screen mode, which allowed a remote attacker to spoof the contents of the Omnibox URL bar via crafted HTML pages...

6.5CVSS6.9AI score0.01235EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/10/17 12:0 a.m.21 views

CVE-2016-5188

Multiple issues in Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux allow a remote attacker to spoof various parts of browser UI via crafted HTML pages...

4.3CVSS6.8AI score0.00971EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/10/17 12:0 a.m.27 views

CVE-2016-5192

Blink in Google Chrome prior to 54.0.2840.59 for Windows missed a CORS check on redirect in TextTrackLoader, which allowed a remote attacker to bypass cross-origin restrictions via crafted HTML pages...

6.5CVSS7AI score0.01197EPSS
Exploits0References2
OSV
OSV
added 2016/10/17 12:0 a.m.4 views

UBUNTU-CVE-2016-5185

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal, which allowed a remote attacker to perform an out of bounds memory read via crafted HTML pages...

8.8CVSS7.3AI score0.01122EPSS
Exploits0References3
Rows per page
Query Builder