Lucene search
K

20 matches found

Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-38206

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient validation of untrusted input in FedCM Federated Credential Management, an API that allows users to sign into websites using credentials from a third-party identity provide...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References138
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-30336

Malware in sbrugna...

6.5CVSS6.5AI score0.01477EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-19540

Malware in sbrugna...

8.8CVSS8.7AI score0.01875EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-1942

Malware in sbrugna...

5.1CVSS8.9AI score0.02536EPSS
Exploits0References33
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2012-4362

Malware in sbrugna...

6.8CVSS6.3AI score0.01287EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2021-8256

Malicious code in bioql PyPI...

8.8CVSS6AI score0.00653EPSS
Exploits0References3
CVE
CVE
added 2025/01/27 2:22 p.m.59 views

CVE-2025-24680

CVE-2025-24680 affects WordPress WP Multistore Locator (plugin) up to version 2.4.7 and is a cross-site scripting (XSS) issue caused by improper neutralization of script-related HTML tags in reflected input. Public sources consistently state the vulnerability is XSS (Reflected) and indicate remed...

7.1CVSS7.2AI score0.00251EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2024/03/20 12:0 a.m.6 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-15364)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS5.4AI score0.0054EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/03/28 12:0 a.m.5 views

The vulnerability of the ANGLE library in Google Chrome browsers allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the ANGLE library in Google Chrome browsers is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause service interruptions or execute arbitrary code through a specially created HTML page...

10CVSS8AI score0.02925EPSS
Exploits0References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/10/31 12:0 a.m.6 views

The vulnerability of the Frames component in Google Chrome browsers allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Frames component in Google Chrome browsers relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information through a specially crafted HTML page...

10CVSS7.6AI score0.01855EPSS
Exploits0References10Affected Software4
Redos
Redos
added 2021/09/08 12:0 a.m.7 views

ROS-2-1624

2.1624 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...

9.8CVSS7.9AI score0.02377EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2020/08/28 12:0 a.m.10 views

The vulnerability of the Windows Media Foundation component in Windows operating systems allows attackers to gain privileges to install programs, view, modify, or delete data, as well as create new user accounts with full user rights.

The vulnerability of the Windows Media Foundation component in Windows operating systems arises from operations that occur outside the buffer in memory. Exploiting this vulnerability can allow attackers to gain control over programs, access data, modify or delete data, and create new user account...

7.8CVSS7.4AI score0.02678EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/11/09 12:0 a.m.5 views

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser allows a hacker to execute arbitrary code.

The vulnerability of the ChakraCore JavaScript script handler in the Microsoft Edge browser is caused by an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially created web page...

4.2CVSS8.1AI score0.14607EPSS
Exploits0References4Affected Software1
Check Point Advisories
Check Point Advisories
added 2015/02/10 12:0 a.m.23 views

Microsoft Internet Explorer Memory Corruption (MS15-009: CVE-2015-0037)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...

9.3CVSS7AI score0.26709EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2013/02/12 12:0 a.m.5 views

Microsoft Internet Explorer SLayoutRun Use After Free (MS13-009) - High Confidence (CVE-2013-0025)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...

9.3CVSS7.3AI score0.55765EPSS
Exploits11
Check Point Advisories
Check Point Advisories
added 2010/08/10 12:0 a.m.2 views

Internet Explorer Refresh Race Condition Memory Corruption (MS10-053; CVE-2010-2558; CVE-2011-1963)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer accesses an object that may have been corrupted due to a race condition. To trigger this issue, an attacker may create a malicious web page that will explo...

9.3CVSS7.4AI score0.23356EPSS
Exploits1
Cvelist
Cvelist
added 2005/02/20 5:0 a.m.18 views

CVE-2004-1616

Links allows remote attackers to cause a denial of service memory consumption via a web page or HTML email that contains a table with a td element and a large rowspan value,as demonstrated by mangleme...

6.5AI score0.01868EPSS
Exploits1References6
exploitpack
exploitpack
added 2004/09/15 12:0 a.m.15 views

PHP 4.x5.0.1 - PHP_Variables Remote Memory Disclosure

PHP 4.x5.0.1 - PHPVariables Remote Memory Disclosure source: https://www.securityfocus.com/bid/11334/info A vulnerability is reported to present itself in the array parsing functions of the 'phpvariables.c' PHP source file. The vulnerability occurs when a PHP script is being used to print URI...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2003/06/05 12:0 a.m.30 views

Microsoft Internet Explorer 6 - '%USERPROFILE%' File Execution

source: https://www.securityfocus.com/bid/7826/info Microsoft Internet Explorer is prone to an issue which could permit an attacker to load a known, existing file in a user's temporary directory or possibly other directories in a user's profile. It is possible to exploit this issue via a maliciou...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/12/14 12:0 a.m.51 views

Microsoft Security Bulletin MS02-069: Flaw in Microsoft VM Could Enable System Compromise (810030)

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Flaw in Microsoft VM Could Enable System Compromise 810030 Date: 11 December 2002 Software: Microsoft VM Impact: Eight vulnerabilities, the most serious of which would enable an...

6.8AI score
Exploits0
Rows per page
Query Builder