10 matches found
Mageia: Security Advisory (MGASA-2017-0111)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
bdodarts.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1006619 Security Researcher 4NCURZE Helped patch 1424 vulnerabilities Received 7 Coordinated Disclosure badges Received 12 recommendations , a holder of 7 badges for responsible and coordinated disclosure, found a security vulnerability affecting bdodarts.com website and i...
Chrome Universal XSS through bypassing ScopedPageSuspender with closing windows (CVE-2017-5007)
VULNERABILITY DETAILS ScopedPageSuspender works by taking pages from Page::ordinaryPages and marking them as suspended. When the window. close is called, the following operations are performed: From /thirdparty/WebKit/Source/web/ChromeClientImpl.cpp: void ChromeClientImpl::closeWindowSoon // Make...
openSUSE: Security Advisory for chromium (openSUSE-SU-2017:0499-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-5007
CVE-2017-5007 is a Cross-Site Scripting (UXSS) vulnerability in Google Chrome/Chromium’s Blink component. The issue arises from incorrect handling of the sequence of events when closing a page, allowing a remote attacker to inject arbitrary scripts or HTML via a crafted HTML page. Affected produc...
CVE-2017-5007
Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, incorrectly handled the sequence of events when closing a page, which allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...
CVE-2017-5007
Removed by vendor...
[SECURITY] [DSA 3776-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3776-1 [email protected] https://www.debian.org/security/ Michael Gilbert January 31, 2017 https://www.debian.org/security/faq -...
RHEL 6 : chromium-browser (RHSA-2017:0206)
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
CVE-2017-5007
Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, incorrectly handled the sequence of events when closing a page, which allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...