85 matches found
firefox security update
60.6.1-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.6.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Build with ol8 rust/llvm rather than scl 60.6.1-1 - Update to 60.6.1 ESR Build 1 60.6.0-3 - Added Google API keys mozbz1531176...
CVE-2018-20840
An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recover from exceptions. On the client, ID token handling can cause an unhandled exception because of...
Integer overflow
An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recover from exceptions. On the client, ID token handling can cause an unhandled exception because of...
CVE-2018-20840
An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recover from exceptions. On the client, ID token handling can cause an unhandled exception because of...
CVE-2018-20840
The CVE-2018-20840 issue affects the Google API C++ Client and is triggered during Google Sign-In prior to 2019-04-10. The root cause is an unhandled exception arising from improper handling of ID tokens in client/auth/oauth2_authorization.cc, caused by misinterpreting an integer as a string. Thi...
firefox security update
60.6.0-3.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.6.0-3 - Added Google API keys mozbz1531176 60.6.0-2 - Update to 60.6.0 ESR Build 2 60.6.0-1 - Update to 60.6.0 ESR Build 1...
firefox security update
60.6.0-3.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.6.0-3 - Added Google API keys mozbz1531176 60.6.0-2 - Update to 60.6.0 ESR Build 2 60.6.0-1 - Update to 60.6.0 ESR Build 1...
Mail.ru: Insecure Storage and Overly Permissive Google Maps API Key in Android App
Google API keys used in Cloud Mail.Ru for Android application were not properly limited in functionality...
yougapi.com XSS vulnerability
Open Bug Bounty ID: OBB-666386 Description| Value ---|--- Affected Website:| yougapi.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
MGASA-2018-0308 Updated chromium-browser-stable packages fix security vulnerability
Chromium-browser 67.0.3396.87-2 fixes an out-of-bounds write error in V8 CVE-2018-6149 and incorrect handling of content security policy CVE-2018-6148. It also contains a new google API key...
Updated chromium-browser-stable packages fix security vulnerability
Chromium-browser 67.0.3396.87-2 fixes an out-of-bounds write error in V8 CVE-2018-6149 and incorrect handling of content security policy CVE-2018-6148. It also contains a new google API key...
Google Releases reCAPTCHA API for Android
Google announced today that it has made a new reCAPTCHA API available for Android. The API is part of Google Play Services, Google said, and developers can now add the verification to mobile applications to distinguish between bots and human users. The technology is more than a decade old and...
Man In The Middle (MitM)
google-api-client is vulnerable to man-in-the-middle attacks MitM. The rubygems source is deprecated, meaning a malicious user can potentially compromise the source to conduct man-in-the-middle attacks...
Google Patches Clickjacking Bug in API Explorer
Google has patched a clickjacking vulnerability that a researcher says would enable an attacker to retrieve or delete email conversations, manipulate YouTube and Google Plus accounts, and more. A Google representative said in an email to Threatpost that the bug affected developers who had...
Wiretapping storm: the Android platform https sniffing hijacking vulnerability-vulnerability warning-the black bar safety net
0x0 Preface Last year 1 0 mid-May, Tencent Security Center in the daily terminal Safety audits found that, in the Android platform used in https communication of app the vast majority of are not safe to use the google API, a direct result of https communication of sensitive information leakage ev...
openSUSE Security Update : chromium (openSUSE-SU-2013:0236-1)
Update to 26.0.1383 - Security fixes bnc798326 - CVE-2012-5145: Use-after-free in SVG layout - CVE-2012-5146: Same origin policy bypass with malformed URL - CVE-2012-5147: Use-after-free in DOM handling - CVE-2012-5148: Missing filename sanitization in hyphenation support - CVE-2012-5149: Integer...
Xenotix xBOT - A Cross Platform PoC Bot that abuse certain Google Services to implement it's C&C
Xenotix xBOT is a proof of concept cross platform Linux, Windows, Mac bot written in Python that abuse certain Google Services to implement Command & Control Center for the botnet. The Google Apps Data API, Google Forms and Google Spreadsheet is abused to implement C2 for a bot network. The Googl...
CVE-2013-4384
Cross-site scripting XSS vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API...
Cross site scripting
Cross-site scripting XSS vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API...
CVE-2013-4384
Cross-site scripting XSS vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API...