CVE-2026-11309

An insufficient policy enforcement flaw was found in the History component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=506392934...

Chromium: CVE-2026-11309 Insufficient policy enforcement in History

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

BIT-JOOMLA-2026-30894 Joomla! Core - [20260503] - XSS in com_contenthistory

Lack of output escaping leads to a XSS vector in the content history component...

CVE-2026-30894

Lack of output escaping leads to a XSS vector in the content history component...

CVE-2026-30894

Lack of output escaping leads to a XSS vector in the content history component...

CVE-2026-30894 Joomla! Core - [20260503] - XSS in com_contenthistory

Lack of output escaping leads to a XSS vector in the content history component...

CVE-2026-30894

CVE-2026-30894 affects Joomla! Core – com_contenthistory. The issue arises from lack of output escaping in the content history component, enabling a XSS vector. CVSS4.0 metrics indicate: Network attack vector, Low attack complexity, High privileges required, Passive user interaction; base score 6...

EUVD-2026-31872

Lack of output escaping leads to a XSS vector in the content history component...

Joomla! CMS 跨站脚本漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. Joomla! CMS has a cross-site scripting vulnerability, which stems from the lack of output escaping. This vulnerability may lead to cross-site scripting attacks within the content history component of the...

CVE-2025-0581 CampCodes School Management Software Chat History send cross site scripting

A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0. This affects an unknown part of the file /chat/group/send of the component Chat History. The manipulation of the argument message leads to cross site scripting. It is possible to initiate the...

Mozilla: Use-after-free in nsSHistory

The Mozilla Foundation Security Advisory describes this flaw as: Session history navigations may have led to a use-after-free and potentially exploitable crash...

The vulnerability of the History API component in the Cisco SD-WAN vManage network management system allows a attacker to disclose protected information.

The vulnerability of the History API component in the Cisco SD-WAN vManage network management system is related to errors in request processing. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

PT-2021-7904 · Aom +4 · Aom +4

Name of the Vulnerable Software and Affected Versions: AOM version 2.0.1 Description: The issue is related to a NULL pointer dereference via the rate hist.c component. This can potentially allow a remote attacker to cause a denial of service. Recommendations: For AOM version 2.0.1, at the moment,...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A heap buffer overflow in the History component allows an attacker to execute arbitrary code on the host OS...

Google Chromium Buffer Overflow Vulnerability (CNVD-2021-34708)

Google Chromium is an open source web browser from Google USA. A security vulnerability previously existed in Google Chromium version 90.0.4430.212. The vulnerability stems from a heap buffer overflow security issue discovered in the program's "History" component. No details of the vulnerability...

Google Chrome 缓冲区错误漏洞

Google Chromium is an open source web browser from Google USA. A security vulnerability previously existed in Google Chromium version 90.0.4430.212. The vulnerability stems from a heap buffer overflow security issue discovered in the program's "History" component. No details of the vulnerability...

The vulnerability of the Google Chrome browser’s history component allows a perpetrator to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the Google Chrome browser’s history component relates to the operation of the buffer data beyond its allowable limits. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise its integrity, and cause service interruptions...

Google Chrome Buffer Overflow Vulnerability (CNVD-2020-41208)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A buffer overflow vulnerability exists in History in versions prior to Google Chrome 84.0.4147.89, which can be exploited by an attacker with the help of a speciall...

The vulnerability of the WebKit component in the Safari browser and the iOS operating system allows a hacker to trigger a service failure.

The vulnerability of the History component implementation in WebKit of the Safari browser and the iOS operating system is related to resource management errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure application termination throug...

Joomla! com_contenthistory component information disclosure vulnerability

Joomla! is an open source content management system CMS. An information disclosure vulnerability exists in the Joomla! comcontenthistory component, which can be exploited by remote attackers to obtain sensitive information...