CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

CVE-2026-11309

An insufficient policy enforcement flaw was found in the History component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=506392934...

4.3CVSS5.4AI score0.00013EPSS

Exploits0References5

Microsoft CVE•added 2 days ago•6 views

Chromium: CVE-2026-11309 Insufficient policy enforcement in History

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.4AI score0.00013EPSS

Exploits0

OSV•added 2026/05/28 8:45 a.m.•5 views

BIT-JOOMLA-2026-30894 Joomla! Core - [20260503] - XSS in com_contenthistory

Lack of output escaping leads to a XSS vector in the content history component...

6.9CVSS5.8AI score0.00005EPSS

Exploits0References2

NVD•added 2026/05/26 5:16 p.m.•4 views

CVE-2026-30894

Lack of output escaping leads to a XSS vector in the content history component...

6.9CVSS0.00005EPSS

Exploits0References1

ATTACKERKB•added 2026/05/26 4:42 p.m.•6 views

CVE-2026-30894

Lack of output escaping leads to a XSS vector in the content history component...

6.9CVSS5.8AI score0.00005EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/26 4:42 p.m.•33 views

CVE-2026-30894 Joomla! Core - [20260503] - XSS in com_contenthistory

Lack of output escaping leads to a XSS vector in the content history component...

6.9CVSS0.00005EPSS

Exploits0References1

CVE•added 2026/05/26 4:42 p.m.•10 views

CVE-2026-30894

CVE-2026-30894 affects Joomla! Core – com_contenthistory. The issue arises from lack of output escaping in the content history component, enabling a XSS vector. CVSS4.0 metrics indicate: Network attack vector, Low attack complexity, High privileges required, Passive user interaction; base score 6...

6.9CVSS5.8AI score0.00005EPSS

Exploits0References1Affected Software1

EUVD•added 2026/05/26 4:42 p.m.•5 views

EUVD-2026-31872

Lack of output escaping leads to a XSS vector in the content history component...

6.9CVSS5.8AI score0.00005EPSS

Exploits0References1

CNNVD•added 2026/05/26 12:0 a.m.•4 views

Joomla! CMS 跨站脚本漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. Joomla! CMS has a cross-site scripting vulnerability, which stems from the lack of output escaping. This vulnerability may lead to cross-site scripting attacks within the content history component of the...

6.9CVSS5.6AI score0.00005EPSS

Exploits0References1

Vulnrichment•added 2025/01/20 3:0 a.m.•7 views

CVE-2025-0581 CampCodes School Management Software Chat History send cross site scripting

A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. This affects an unknown part of the file /chat/group/send of the component Chat History. The manipulation of the argument message leads to cross site scripting. It is possible to initiate the...

5.3CVSS6.2AI score0.00131EPSS

Exploits1References5

RedHat Linux•added 2022/07/01 1:32 a.m.•2 views

Mozilla: Use-after-free in nsSHistory

The Mozilla Foundation Security Advisory describes this flaw as: Session history navigations may have led to a use-after-free and potentially exploitable crash...

9.8CVSS7.3AI score0.00645EPSS

Exploits0References6

Positive Technologies•added 2021/12/02 12:0 a.m.•0 views

PT-2021-7904 · Aom +4 · Aom +4

Name of the Vulnerable Software and Affected Versions: AOM version 2.0.1 Description: The issue is related to a NULL pointer dereference via the rate hist.c component. This can potentially allow a remote attacker to cause a denial of service. Recommendations: For AOM version 2.0.1, at the moment,...

9.8CVSS7.3AI score0.00247EPSS

Exploits5References78

Veracode•added 2021/05/20 10:47 a.m.•21 views

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A heap buffer overflow in the History component allows an attacker to execute arbitrary code on the host OS...

8.8CVSS4.1AI score0.00807EPSS

Exploits1References8Affected Software3

CNVD•added 2021/05/12 12:0 a.m.•4 views

Google Chromium Buffer Overflow Vulnerability (CNVD-2021-34708)

Google Chromium is an open source web browser from Google USA. A security vulnerability previously existed in Google Chromium version 90.0.4430.212. The vulnerability stems from a heap buffer overflow security issue discovered in the program's "History" component. No details of the vulnerability...

8.8CVSS7.1AI score0.00807EPSS

Exploits1References1

CNNVD•added 2021/05/10 12:0 a.m.•1 views

Google Chrome 缓冲区错误漏洞

8.8CVSS5.9AI score0.00807EPSS

Exploits1References15

CNVD•added 2020/07/15 12:0 a.m.•2 views

Google Chrome Buffer Overflow Vulnerability (CNVD-2020-41208)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A buffer overflow vulnerability exists in History in versions prior to Google Chrome 84.0.4147.89, which can be exploited by an attacker with the help of a speciall...

9.3CVSS9.6AI score0.01729EPSS

Exploits0References1

CNVD•added 2015/11/03 12:0 a.m.•3 views

Joomla! com_contenthistory component information disclosure vulnerability

Joomla! is an open source content management system CMS. An information disclosure vulnerability exists in the Joomla! comcontenthistory component, which can be exploited by remote attackers to obtain sensitive information...

5CVSS6.3AI score0.00165EPSS

Exploits0References1

Exploit DB•added 2010/07/03 12:0 a.m.•47 views

TWiki History TWikiUsers - 'rev' Command Execution (Metasploit)

$Id: twikihistory.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

7.5CVSS7AI score0.84001EPSS

Exploits8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by