16 matches found
EUVD-2016-2711
Malware in sbrugna...
EUVD-2007-6502
Malware in sbrugna...
EUVD-2022-15755
Malicious code in bioql PyPI...
CVE-2022-0663
The Print, PDF, Email by PrintFriendly WordPress plugin before 5.2.3 does not sanitise and escape the Custom Button Text settings, which could allow high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...
Google Chrome URL Forgery Vulnerability
Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the 'CustomButton::AcceleratorPressed' function in the ui/views/controls/button/custombutton.cc file in Google Chrome versions prior to 48.0.2564.82. ' function in the...
chromium-browser: various fixes from internal audits
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
CVE-2016-1616
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
CVE-2016-1616
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
Design/Logic Flaw
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
CVE-2016-1616
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
UBUNTU-CVE-2016-1616
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
CVE-2016-1616
The CustomButton::AcceleratorPressed function in ui/views/controls/button/custombutton.cc in Google Chrome before 48.0.2564.82 allows remote attackers to spoof URLs via vectors involving an unfocused custom button...
CVE-2016-1616
CVE-2016-1616 in Google Chrome/Chromium prior to 48.0.2564.82: The CustomButton::AcceleratorPressed function in ui/views/controls/button/custom_button.cc allows remote attackers to spoof URLs via vectors involving an unfocused custom button. Impact is remote URL spoofing; likelihood and severity ...
CVE-2016-1616
Removed by vendor...
CVE-2007-6536
The Custom Button Installer dialog in Google Toolbar 4 and 5 beta presents certain domain names in the 1 "Downloaded from" and 2 "Privacy considerations" sections without verifying domain names, which makes it easier for remote attackers to spoof domain names and trick users into installing...
CVE-2007-6536
The CVE-2007-6536 issue affects Google Toolbar 4 and 5 beta where the Custom Button Installer dialog may display domain names in the “Downloaded from” and “Privacy considerations” fields without validating them. The root cause is lack of domain verification, enabling remote attackers to spoof dom...