Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

37 matches found

Packet Storm
Packet Stormadded 2025/03/19 12:0 a.m.642 views

libxslt xsltParseStylesheetProcess Use-After-Free

libxslt suffers from a use-after-free vulnerability in xsltParseStylesheetProcess. There is a use-after-free issue in libxslt read on a namespace URL stored in exclPrefixTab. The issue was reproduced on the latest Git version. The proof of concept and ASAN log are provided at the end of the repor...

7.8CVSS7AI score0.00104EPSS
Exploits3
0day.today
0day.todayadded 2018/09/28 12:0 a.m.113 views

WebKit - WebCore::RenderLayer::updateDescendantDependentFlags Use-After-Free Exploit

Exploit for multiple platform in category dos / poc htmlvar00005, noframes, diplay: inline; padding-top: 0vw; -webkit-column-count: 41; transition-delay: body::first-letter box-flex-group: -webkit-background-size: contain; -webkit-opacity: 0.716727864979; htmlvar00001, .class1 1vmax; display:...

8.3AI score0.20038EPSS
Exploits2
Exploit DB
Exploit DBadded 2018/09/25 12:0 a.m.31 views

WebKit - 'WebCore::RenderTreeBuilder::removeAnonymousWrappersForInlineChildrenIfNeeded' Use-After-Free

::selection, input:focus, .class0, ul::first-letter -webkit-column-count: 85; float: left; function jsfuzzer var fuzzervars = ; try / / var00034 = document.getSelection; catche try var00034.setPositionhtmlvar00003; var var00043 catche try / newvarvar00104:Element / var var00104 = htmlvar00013;...

7.4AI score
Exploits0
0day.today
0day.todayadded 2018/02/01 12:0 a.m.40 views

WebKit - WebCore::FrameView::clientToLayoutViewportPoint Use-After-Free Exploit

Exploit for multiple platform in category dos / poc function jsfuzzer var b = document.createElement"body"; a.appendb; ta.autofocus = true; var iframe = document.createElement"iframe"; b.appendChildiframe; li.appendChilddd; iframe.contentDocument.caretRangeFromPoint; function eventhandler...

7.1AI score
Exploits0
0day.today
0day.todayadded 2018/02/01 12:0 a.m.63 views

WebKit - detachWrapper Use-After-Free Exploit

Exploit for multiple platform in category dos / poc ::detachWrapper /Users/projectzero/webkit/WebKit/WebKitBuild/Release...

7AI score0.02981EPSS
Exploits3
seebug.org
seebug.orgadded 2017/11/23 12:0 a.m.41 views

WebKit: use-after-free in WebCore::DocumentLoader::frameLoader(CVE-2017-13794)

There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. ASan log: ================================================================= ==689==ERROR: AddressSanitizer: heap-use-after-free on address 0x6110000889c8 at pc 0x000114c94a...

6.8CVSS0.3AI score0.21364EPSS
Exploits4
exploitpack
exploitpackadded 2017/11/22 12:0 a.m.26 views

WebKit - WebCore::SimpleLineLayout::RunResolver::runForPoint Out-of-Bounds Read

WebKit - WebCore::SimpleLineLayout::RunResolver::runForPoint Out-of-Bounds Read / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1349 There is an out-of-bounds read security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. PoC:...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2017/11/22 12:0 a.m.28 views

WebKit - WebCore::InputType::element Use-After-Free (2)

WebKit - WebCore::InputType::element Use-After-Free 2 / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1345 There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. PoC:...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2017/11/22 12:0 a.m.49 views

WebKit WebCore::TreeScope::documentScope Use-After-Free

WebKit: use-after-free in WebCore::TreeScope::documentScope CVE-2017-13796 There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. PoC: ================================================================= function freememory var a;...

7.1AI score0.19925EPSS
Exploits4
0day.today
0day.todayadded 2017/11/22 12:0 a.m.60 views

WebKit - WebCore::AXObjectCache::performDeferredCacheUpdate Use-After-Free Exploit

Exploit for multiple platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1347 There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. Note that accessibility features need to be...

6.8CVSS8.3AI score0.21364EPSS
Exploits3
Exploit DB
Exploit DBadded 2017/11/22 12:0 a.m.55 views

WebKit - 'WebCore::InputType::element' Use-After-Free (2)

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1345 There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. PoC: ================================================================= / function go...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2017/07/27 12:0 a.m.34 views

WebKit: use-after-free in WebCore::AccessibilityNodeObject::textUnderElement(CVE-2017-7048)

There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. Note that accessibility features need to be enabled in order to trigger this bug. On Safari on Mac this can be accomplished by opening the inspector simply opening the...

6.8CVSS8.3AI score0.04406EPSS
Exploits4
seebug.org
seebug.orgadded 2017/07/27 12:0 a.m.33 views

WebKit: use-after-free in WebCore::getCachedWrapper(CVE-2017-7040)

There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. PoC: ================================================================= function freememory var a; forvar i=0;i...

6.8CVSS8.2AI score0.03473EPSS
Exploits4
Packet Storm
Packet Stormadded 2017/07/25 12:0 a.m.65 views

WebKit WebCore::AccessibilityNodeObject::textUnderElement Use-After-Free

WebKit: use-after-free in WebCore::AccessibilityNodeObject::textUnderElement CVE-2017-7048 There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. Note that accessibility features need to be enabled in order to trigger this bug...

6.8CVSS7.6AI score0.04406EPSS
Exploits4
0day.today
0day.todayadded 2017/07/24 12:0 a.m.58 views

WebKit - WebCore::InputType::element Use-After-Free Exploit

Exploit for multiple platform in category dos / poc var runcount = 0; function go runcount++; ifruncount 2 return; i.type = "foo"; i.select; i.type = "search"; document.onsearch = document.body.onload; document.execCommand"insertHTML", false, ""; !--...

9.3CVSS7.6AI score0.14373EPSS
Exploits4
Exploit DB
Exploit DBadded 2017/07/24 12:0 a.m.54 views

WebKit - 'WebCore::RenderObject' with Accessibility Enabled Use-After-Free

link text-transform: lowercase; link::first-letter border-spacing: 1em; function go dt.appendChildlink; var s = link.style; s.setProperty"display", "table-column-group"; s.setProperty"-webkit-appearance", "menulist-button"; function eventhandler dir.setAttribute"aria-labeledby", "meta";...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2017/05/25 12:0 a.m.25 views

Apple WebKit Safari 10.0.3(12602.4.8) - Editor::Command::execute Universal Cross-Site Scripting

Apple WebKit Safari 10.0.312602.4.8 - Editor::Command::execute Universal Cross-Site Scripting document-updateLayoutIgnorePendingStylesheets; return mcommand-executemframe, triggeringEvent, msource, parameter; This method is invoked under an |EventQueueScope|. But...

6.7AI score
Exploits0
Packet Storm
Packet Stormadded 2017/05/25 12:0 a.m.35 views

WebKit WebCore::FrameView::scheduleRelayout Use-After-Free

WebKit: UAF in WebCore::FrameView::scheduleRelayout CVE-2017-2514 PoC: let f = document.body.appendChilddocument.createElement'iframe'; let g = f.contentDocument.body.appendChilddocument.createElement'iframe'; g.contentWindow.onunload = = g.contentWindow.onunload = null; let h =...

7.5AI score0.03506EPSS
Exploits3
Packet Storm
Packet Stormadded 2017/05/25 12:0 a.m.361 views

Skia Graphics Library Heap Overflow

Skia Graphics Library: heap overflow due to rounding error in SkEdge::setLine Skia bug: https://bugs.chromium.org/p/skia/issues/detail?id=6294 There is a heap overflow in SkARGB32ShaderBlitter::blitH caused by a rounding error in SkEdge::setLine. To trigger the bug Skia needs to be compiled with...

0.5AI score
Exploits0
Packet Storm
Packet Stormadded 2017/05/25 12:0 a.m.112 views

Mozilla Firefox gfxTextRun Out-Of-Bounds Read

Mozilla Firefox: out-of-bounds read in gfxTextRun CVE-2017-5447 Mozilla bug tracker link: https://bugzilla.mozilla.org/showbug.cgi?id=1343552 There is an out-of-bounds read vulnerability in Firefox. The vulnerability was confirmed on the nightly ASan build. PoC:...

0.4AI score0.10983EPSS
Exploits4
Rows per page
Query Builder