Lucene search
K

85 matches found

Oracle linux
Oracle linux
added 2019/07/30 12:0 a.m.42 views

firefox security update

60.6.1-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.6.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Build with ol8 rust/llvm rather than scl 60.6.1-1 - Update to 60.6.1 ESR Build 1 60.6.0-3 - Added Google API keys mozbz1531176...

9.8CVSS0.9AI score0.29514EPSS
Exploits24
OSV
OSV
added 2019/05/30 4:29 p.m.5 views

CVE-2018-20840

An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recover from exceptions. On the client, ID token handling can cause an unhandled exception because of...

8.6CVSS5.8AI score0.00651EPSS
Exploits1References2
Prion
Prion
added 2019/05/30 4:29 p.m.18 views

Integer overflow

An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recover from exceptions. On the client, ID token handling can cause an unhandled exception because of...

5CVSS8.5AI score0.00651EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/05/30 3:58 p.m.18 views

CVE-2018-20840

An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recover from exceptions. On the client, ID token handling can cause an unhandled exception because of...

8.6AI score0.00651EPSS
Exploits1References2
CVE
CVE
added 2019/05/30 3:58 p.m.49 views

CVE-2018-20840

The CVE-2018-20840 issue affects the Google API C++ Client and is triggered during Google Sign-In prior to 2019-04-10. The root cause is an unhandled exception arising from improper handling of ID tokens in client/auth/oauth2_authorization.cc, caused by misinterpreting an integer as a string. Thi...

8.6CVSS8.5AI score0.00651EPSS
Exploits1References2Affected Software1
Oracle linux
Oracle linux
added 2019/03/20 12:0 a.m.112 views

firefox security update

60.6.0-3.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.6.0-3 - Added Google API keys mozbz1531176 60.6.0-2 - Update to 60.6.0 ESR Build 2 60.6.0-1 - Update to 60.6.0 ESR Build 1...

9.8CVSS1.6AI score0.19762EPSS
Exploits11
Oracle linux
Oracle linux
added 2019/03/20 12:0 a.m.123 views

firefox security update

60.6.0-3.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.6.0-3 - Added Google API keys mozbz1531176 60.6.0-2 - Update to 60.6.0 ESR Build 2 60.6.0-1 - Update to 60.6.0 ESR Build 1...

9.8CVSS1.5AI score0.19762EPSS
Exploits11
Hacker One
Hacker One
added 2019/01/30 7:12 a.m.305 views

Mail.ru: Insecure Storage and Overly Permissive Google Maps API Key in Android App

Google API keys used in Cloud Mail.Ru for Android application were not properly limited in functionality...

2.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/08/19 3:49 a.m.13 views

yougapi.com XSS vulnerability

Open Bug Bounty ID: OBB-666386 Description| Value ---|--- Affected Website:| yougapi.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
OSV
OSV
added 2018/07/11 9:7 p.m.9 views

MGASA-2018-0308 Updated chromium-browser-stable packages fix security vulnerability

Chromium-browser 67.0.3396.87-2 fixes an out-of-bounds write error in V8 CVE-2018-6149 and incorrect handling of content security policy CVE-2018-6148. It also contains a new google API key...

8.8CVSS7.5AI score0.00726EPSS
Exploits0References3
Mageia
Mageia
added 2018/07/11 9:7 p.m.49 views

Updated chromium-browser-stable packages fix security vulnerability

Chromium-browser 67.0.3396.87-2 fixes an out-of-bounds write error in V8 CVE-2018-6149 and incorrect handling of content security policy CVE-2018-6148. It also contains a new google API key...

8.8CVSS1.6AI score0.00726EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2017/06/09 3:38 p.m.14 views

Google Releases reCAPTCHA API for Android

Google announced today that it has made a new reCAPTCHA API available for Android. The API is part of Google Play Services, Google said, and developers can now add the verification to mobile applications to distinguish between bots and human users. The technology is more than a decade old and...

0.9AI score
Exploits0References2
Veracode
Veracode
added 2016/12/20 8:11 a.m.9 views

Man In The Middle (MitM)

google-api-client is vulnerable to man-in-the-middle attacks MitM. The rubygems source is deprecated, meaning a malicious user can potentially compromise the source to conduct man-in-the-middle attacks...

6.5AI score
Exploits0
ThreatPost
ThreatPost
added 2015/05/04 1:13 p.m.9 views

Google Patches Clickjacking Bug in API Explorer

Google has patched a clickjacking vulnerability that a researcher says would enable an attacker to retrieve or delete email conversations, manipulate YouTube and Google Plus accounts, and more. A Google representative said in an email to Threatpost that the bug affected developers who had...

0.4AI score
Exploits0References3
myhack58
myhack58
added 2014/10/09 12:0 a.m.21 views

Wiretapping storm: the Android platform https sniffing hijacking vulnerability-vulnerability warning-the black bar safety net

0x0 Preface Last year 1 0 mid-May, Tencent Security Center in the daily terminal Safety audits found that, in the Android platform used in https communication of app the vast majority of are not safe to use the google API, a direct result of https communication of sensitive information leakage ev...

7.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.44 views

openSUSE Security Update : chromium (openSUSE-SU-2013:0236-1)

Update to 26.0.1383 - Security fixes bnc798326 - CVE-2012-5145: Use-after-free in SVG layout - CVE-2012-5146: Same origin policy bypass with malformed URL - CVE-2012-5147: Use-after-free in DOM handling - CVE-2012-5148: Missing filename sanitization in hyphenation support - CVE-2012-5149: Integer...

7.5CVSS8.3AI score0.01285EPSS
Exploits0References22
Kitploit
Kitploit
added 2014/06/09 1:31 p.m.14 views

Xenotix xBOT - A Cross Platform PoC Bot that abuse certain Google Services to implement it's C&C

Xenotix xBOT is a proof of concept cross platform Linux, Windows, Mac bot written in Python that abuse certain Google Services to implement Command & Control Center for the botnet. The Google Apps Data API, Google Forms and Google Spreadsheet is abused to implement C2 for a bot network. The Googl...

7.2AI score
Exploits0References1
NVD
NVD
added 2013/10/09 2:54 p.m.14 views

CVE-2013-4384

Cross-site scripting XSS vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API...

4.3CVSS5.6AI score0.01792EPSS
Exploits0References4
Prion
Prion
added 2013/10/09 2:54 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API...

4.3CVSS6.1AI score0.01792EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/10/09 2:44 p.m.18 views

CVE-2013-4384

Cross-site scripting XSS vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API...

5.6AI score0.01792EPSS
Exploits0References4
Rows per page
Query Builder