CVE-2021-21163

The CVE-2021-21163 issue affects Chromium/Google Chrome Reader Mode and is caused by insufficient data validation, allowing a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server. Affected: Chromium/Chrome prior to version 89.0.4389.72. Impact (as stated): cros...

CVE-2021-21163

Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server...

CVE-2021-21163

Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server...

CVE-2021-21163

Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server...

Information Disclosure

chromium is vulnerable to information disclosure. The vulnerability exists through the lack of data validation in the Reader Mode that allows cross-origin data to be leaked...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0401-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...

OPENSUSE-SU-2021:0392-1 Security update for chromium

This update for chromium fixes the following issues: Update to 89.0.4389.72 boo1182358, boo1182960: - CVE-2021-21159: Heap buffer overflow in TabStrip. - CVE-2021-21160: Heap buffer overflow in WebAudio. - CVE-2021-21161: Heap buffer overflow in TabStrip. - CVE-2021-21162: Use after free in WebRT...

Time in Status 跨站脚本漏洞

Atlassian Time in Status is a software application from Atlassian Australia that provides a process for identifying issues by reporting the time spent on each status, assignee or group for each issue. A cross-site scripting vulnerability exists in the Time in Status app for Jira in versions prior...

Sourcecodester Doctor Appointment System Cross-Site Scripting Vulnerability

Sourcecodester Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . Sourcecodester Doctor Appointment System version 1.0 suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data in the WEB...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0392-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...

Chromium CVE-2021-21187: Insufficient data validation in URL formatting

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium CVE-2021-21163: Insufficient data validation in Reader Mode

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium CVE-2021-21164: Insufficient data validation in Chrome for iOS

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Update now! Chrome fix patches in-the-wild zero-day

The Microsoft Browser Vulnerability Research team has found and reported a vulnerability in the audio component of Google Chrome. Google has fixed this high-severity vulnerability CVE-2021-21166 in its Chrome browser and is warning Chrome users that an exploit exists in the wild for the...

UltimateKode Neo Billing Cross-Site Scripting Vulnerability

Envato Neo Billing is an Envato open source application. Provides a well-designed enterprise billing and accounting solution. UltimateKode Neo Billing before 3.5 suffers from a cross-site scripting XSS vulnerability that stems from the lack of proper validation of client-side data in the WEB...

Google Chrome Insufficient Data Validation Vulnerability

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A data validation insufficiency vulnerability exists in Google Chrome versions prior to 89.0.4389.72. An attacker can leak cross-origin data via a crafted HTML page...

Google Chrome 访问控制错误漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A data validation insufficiency vulnerability exists in Google Chrome versions prior to 89.0.4389.72. An attacker can leak cross-origin data via a crafted HTML page...

Google Chrome Insufficient Data Validation Vulnerability (CNVD-2021-16860)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A data validation insufficiency vulnerability exists in Google Chrome versions prior to 89.0.4389.72 in read mode. An attacker can leak cross-origin data via a...

The vulnerability of Intel Graphics Driver drivers, related to deficiencies in input data validation, allows attackers to exploit their privileges.

The vulnerability of Intel Graphics Drivers’ drivers is related to deficiencies in input data validation. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to trigger a service failure.

The vulnerability of the NVIDIA Virtual GPU Manager driver relates to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...