34 matches found
EUVD-2025-2459
Malicious code in bioql PyPI...
EUVD-2022-35398
Malicious code in bioql PyPI...
EUVD-2022-33554
Malicious code in bioql PyPI...
EUVD-2023-25942
Malicious code in bioql PyPI...
CVE-2025-49713
CVE-2025-49713 is a Microsoft Edge (Chromium-based) remote code execution vulnerability through a type confusion in Edge. Affected product: Edge (Chromium-based) browser. Cause: resource access using incompatible type leading to code execution over a network. Impact per CVSS: high severity, user ...
Chromium: CVE-2025-3072 Inappropriate implementation in Custom Tabs
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials
Cybersecurity researchers have demonstrated a novel technique that allows a malicious web browser extension to impersonate any installed add-on. "The polymorphic extensions create a pixel perfect replica of the target's icon, HTML popup, workflows and even temporarily disables the legitimate...
CVE-2025-21401 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
...
CVE-2025-0862
CVE-2025-0862 describes a stored cross-site scripting flaw in the WordPress plugin SuperSaaS – online appointment scheduling . Affected versions up to and including 2.1.12 allow an authenticated attacker with Contributor+ privileges to inject arbitrary scripts via the after parameter, which execu...
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
CVE-2024-49041 Microsoft Edge (Chromium-based) Spoofing Vulnerability
...
New Chrome Zero-Day Vulnerability CVE-2024-4761 Under Active Exploitation
Google on Monday shipped emergency fixes to address a new zero-day flaw in the Chrome web browser that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2024-4761, is an out-of-bounds write bug impacting the V8 JavaScript and WebAssembly engine. It wa...
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability
Google on Thursday released security updates to address a zero-day flaw in Chrome that it said has been actively exploited in the wild. Tracked as CVE-2024-4671, the high-severity vulnerability has been described as a case of use-after-free in the Visuals component. It was reported by an anonymou...
Design/Logic Flaw
CEF Chromium Embedded Framework is a simple framework for embedding Chromium-based browsers in other applications. CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory does not check the size of the shared memory, which leads to out-of-bounds read outside the sandbox. This vulnerability was patche...
Urgent: New Chrome Zero-Day Vulnerability Exploited in the Wild - Update ASAP
Google has rolled out security updates for the Chrome web browser to address a high-severity zero-day flaw that it said has been exploited in the wild. The vulnerability, assigned the CVE identifier CVE-2023-7024, has been described as a heap-based buffer overflow bug in the WebRTC framework that...
Attacks, Vulnerabilities and Actors 31 July to 6 August 2023
For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of one executed attack, one instance of adversary activity, and thirteen vulnerabilities,...
Zero-Day Alert: Google Issues Patch for New Chrome Vulnerability - Update Now!
Google on Monday released security updates to patch a high-severity flaw in its Chrome web browser that it said is being actively exploited in the wild. Tracked as CVE-2023-3079, the vulnerability has been described as a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's...
Rilide Malware – New Crypto Stealer Hits Chromium-Based Browsers
By Deeba Ahmed The Chromium-based browsers include Google Chrome, Microsoft Edge, Brave, Opera, Vivaldi, and several others. This is a post from HackRead.com Read the original post: Rilide Malware - New Crypto Stealer Hits Chromium-Based Browsers...
New Rilide Malware Targeting Chromium-Based Browsers to Steal Cryptocurrency
Chromium-based web browsers are the target of a new malware called Rilide that masquerades itself as a seemingly legitimate extension to harvest sensitive data and siphon cryptocurrency. "Rilide malware is disguised as a legitimate Google Drive extension and enables threat actors to carry out a...