3 matches found
CVE-2026-8004
Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Low...
Google Chrome < 54.0.2840.100 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 54.0.2840.100. It is, therefore, affected by multiple vulnerabilities as referenced in the 201611stable-channel-update-for-desktop9 advisory. - browser/extensions/api/dial/dialregistry.cc in Google Chrome before...
php: Out-of-bound read in timelib_meridian()
In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c...