3777 matches found
WebKitGTK 安全漏洞
WebKitGTK is a full-featured port of WebKitGTK's WebKit rendering engine for projects that require any type of Web integration, from hybrid HTML/CSS applications to full-fledged Web browsers. It provides the full functionality of WebKit for a wide range of systems from desktop computers to embedd...
Linux Distros Unpatched Vulnerability : CVE-2025-66287
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling. CVE-2025-66287 Note that...
Linux Distros Unpatched Vulnerability : CVE-2025-13947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via...
Debian dsa-6070 : gir1.2-javascriptcoregtk-4.0 - security update
The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6070 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6070-1 [email protected]...
CVE-2025-13947
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
UBUNTU-CVE-2025-13947
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
CVE-2025-13947 Webkit: webkitgtk: remote user-assisted information disclosure via file drag-and-drop
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
EUVD-2025-200738
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
CVE-2025-13947 Webkit: webkitgtk: remote user-assisted information disclosure via file drag-and-drop
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
CVE-2025-13947
Concrete details: CVE-2025-13947 affects WebKitGTK/WebKitGTK4 where drag-and-drop operations aren’t verified to originate outside the browser, enabling remote, user-assisted information disclosure of files the user can read. The issue is addressed in multiple distros: Amazon Linux 2/AL2 packages ...
CVE-2025-13947
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
CVE-2025-13947
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...
PT-2025-48801
Name of the Vulnerable Software and Affected Versions WebKitGTK affected versions not specified Description A security issue exists in WebKitGTK that could allow remote, user-assisted information disclosure. The issue involves the file drag-and-drop mechanism, where WebKitGTK does not properly...
WebKitGTK 安全漏洞
WebKitGTK is a full-featured port of the WebKit rendering engine for projects that require any type of web integration, from hybrid HTML / CSS applications to full-fledged web browsers. It provides the full functionality of WebKit for a wide range of systems from desktop computers to embedded...
Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : WebKitGTK vulnerabilities (USN-7895-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7895-1 advisory. Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious...
RockyLinux 9 : webkit2gtk3 (RLSA-2025:20922)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:20922 advisory. webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash CVE-2025-43272 webkitgtk: Processing maliciously crafted we...
[SECURITY] Fedora 42 Update: webkitgtk-2.50.2-1.fc42
WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...
Fedora 42 : webkitgtk (2025-4fc934f283)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-4fc934f283 advisory. Prevent unsafe URI schemes from participating in media playback. Make jscvaluearraybuffergetdata function introspectable. Fix logging in to Google...
USN-7895-1 webkit2gtk vulnerabilities
Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...
USN-7895-1: WebKitGTK vulnerabilities
Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...