Lucene search
K

49 matches found

CNVD
CNVD
added 2015/10/18 12:0 a.m.6 views

Google Chrome PDFium 'CPDF_Document::GetPage' function code injection vulnerability

Google Chrome is an open source WEB browser. Google Chrome uses PDFium in the fpdfapi/fpdfparser/fpdfparserdocument.cpp file in the 'CPDFDocument::GetPage' function has a security vulnerability that allows an An attacker to construct a malicious PDF document and induce users to parse it, which...

6.8CVSS9.3AI score0.01433EPSS
Exploits0References1
NVD
NVD
added 2015/10/15 10:59 a.m.18 views

CVE-2015-6758

The CPDFDocument::GetPage function in fpdfapi/fpdfparser/fpdfparserdocument.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, does not properly perform a cast of a dictionary object, which allows remote attackers to cause a denial of service or possibly have unspecified other impact vi...

6.8CVSS9.6AI score0.01433EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2015/10/15 10:59 a.m.20 views

CVE-2015-6758

The CPDFDocument::GetPage function in fpdfapi/fpdfparser/fpdfparserdocument.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, does not properly perform a cast of a dictionary object, which allows remote attackers to cause a denial of service or possibly have unspecified other impact vi...

6.8CVSS7.3AI score0.01433EPSS
Exploits0References4
OSV
OSV
added 2015/10/15 10:59 a.m.3 views

UBUNTU-CVE-2015-6758

The CPDFDocument::GetPage function in fpdfapi/fpdfparser/fpdfparserdocument.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, does not properly perform a cast of a dictionary object, which allows remote attackers to cause a denial of service or possibly have unspecified other impact vi...

6.8CVSS7.4AI score0.01433EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2015/10/15 10:0 a.m.44 views

CVE-2015-6758

Removed by vendor...

6.8CVSS9.4AI score0.01433EPSS
Exploits0
NVD
NVD
added 2014/06/19 10:50 a.m.14 views

CVE-2014-2962

Absolute path traversal vulnerability in the webproc cgi module on the Belkin N150 F9K1009 v1 router with firmware before 1.00.08 allows remote attackers to read arbitrary files via a full pathname in the getpage parameter...

7.8CVSS6.6AI score0.47095EPSS
Exploits1References3
Prion
Prion
added 2014/06/19 10:50 a.m.17 views

Path traversal

Absolute path traversal vulnerability in the webproc cgi module on the Belkin N150 F9K1009 v1 router with firmware before 1.00.08 allows remote attackers to read arbitrary files via a full pathname in the getpage parameter...

7.8CVSS7.2AI score0.47095EPSS
Exploits1References3Affected Software2
ATTACKERKB
ATTACKERKB
added 2011/11/01 10:55 p.m.3 views

CVE-2010-4970

SQL injection vulnerability in handlers/getpage.php in Wiki Web Help 0.28 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS6.4AI score0.01047EPSS
Exploits1References6
NVD
NVD
added 2006/10/30 11:7 p.m.11 views

CVE-2006-5607

Directory traversal vulnerability in /cgi-bin/webcm in INCA IM-204 allows remote attackers to read arbitrary files via a "/./." modified dot dot sequences in the getpage parameter...

5CVSS6.7AI score0.01865EPSS
Exploits1References6
Rows per page
Query Builder