18 matches found
PT-2026-46836
Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
@aidps/canvas-flow (>=1.0.0 <=1.0.1), @antv/xflow (>=2.0.1 <=2.2.4) +83 more potentially affected by unknown CVE via @antv/x6-plugin-history (>=2.2.3 <=2.2.4)
@antv/x6-plugin-history NPM version =2.2.3, =1.0.0, =2.0.1, =0.0.1, =0.0.2, =1.0.0-beta.46, =0.0.4, =0.7.0, =0.0.3, =2.0.4, =0.0.27, =0.0.34 - @ithinkdt/lowcode =3.0.0-0 and more Source cves: unknown CVE Source advisory: SNYK:JS-ANTVX6PLUGINHISTORY-16754887...
PHPGurukul Hospital Management System 安全漏洞
PHPGurukul Hospital Management System is a hospital management system developed by PHPGurukul company, based on PHP and MySQL. The PHPGurukul Hospital Management System v4.0 version has a security vulnerability. This vulnerability arises from the Medical History module not verifying the ownership...
EUVD-2016-9714
Malware in sbrugna...
EUVD-2000-0367
Malware in sbrugna...
EUVD-2016-2944
Malware in sbrugna...
EUVD-2023-38437
Malicious code in bioql PyPI...
EUVD-2022-48247
Malicious code in bioql PyPI...
CVE-2024-8613 Improper Access Control in gaizhenbiao/chuanhuchatgpt
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240802 allows attackers to access, copy, and delete other users' chat histories. This issue arises due to improper handling of session data and lack of access control mechanisms, enabling attackers to view and manipulate chat histories of...
CVE-2024-8613 Improper Access Control in gaizhenbiao/chuanhuchatgpt
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240802 allows attackers to access, copy, and delete other users' chat histories. This issue arises due to improper handling of session data and lack of access control mechanisms, enabling attackers to view and manipulate chat histories of...
CVE-2024-10929
CVE-2024-10929 affects ARM Cortex-A57, Cortex-A72 (revisions before r1p0), Cortex-A73 and Cortex-A75. The issue can allow a local attacker to gain a weak form of control over the victim’s branch history (Spectre-BSE style), with potential indirect-branch exploitation and limited impact to confide...
CVE-2024-3404
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a vulnerability due to improper access control mechanisms. This flaw allows an authenticated attacker to bypass intended access restrictions and read the history files of other users, potentially leading to...
The vulnerability of Google Chrome’s browser history allows a hacker to execute arbitrary code.
The vulnerability of Google Chrome’s browser is caused by an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially created web page...
Jenkins Plugin Job Configuration History 跨站请求伪造漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site request...
The vulnerability of the History component in the Google Chrome web browser, related to writing beyond the buffer in memory, allows attackers to access confidential data, compromise its integrity, and cause service interruptions.
The vulnerability of the History component in the Google Chrome web browser is related to writing beyond the buffer limit in memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions through a special...
openSUSE Security Update : chromium (openSUSE-2021-742)
This update for chromium fixes the following issues : Chromium 90.0.4430.212 boo1185908 - CVE-2021-30506: Incorrect security UI in Web App Installs - CVE-2021-30507: Inappropriate implementation in Offline - CVE-2021-30508: Heap buffer overflow in Media Feeds - CVE-2021-30509: Out of bounds write...
ImageMagick compression of TIFF image remote code execution vulnerability, CVE-2016-8707-a vulnerability warning-the black bar safety net
! Vulnerability overview Recently, Cisco Talos has published an article on ImageMagick remote code execution vulnerabilities notice: the Vulnerability Spotlight: ImageMagick Convert Tiff Out of Bounds Write attacker successfully exploited vulnerability can lead to remote code execution. About...
PayPal Inc BB #107 MOS - Persistent History Vulnerability
Document Title: =============== PayPal Inc BB 107 MOS - Persistent History Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1048 PayPal Security UID: dq115aYq Release Date: ============= 2014-10-27 Vulnerability Laboratory ID VL-ID:...