4240 matches found
CVE-2024-58349
WordPress Theme Travelscape 1.0.3 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by exploiting insufficient validation in the theme's upload functionality. Attackers can upload arbitrary files to the theme directory and execute them...
CVE-2026-11297
An insufficient validation of untrusted input flaw was found in the Reader Mode component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502502017...
CVE-2026-11255
An insufficient validation of untrusted input flaw was found in the Storage Access API component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498417152...
CVE-2026-11198
An insufficient validation of untrusted input flaw was found in the Codecs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504395300...
CVE-2026-11192
An insufficient validation of untrusted input flaw was found in the Password Manager component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=503490678...
CVE-2026-11158
An insufficient validation of untrusted input flaw was found in the Downloads component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501844153...
CVE-2026-11128
An insufficient validation of untrusted input flaw was found in the Web Share component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501541341...
CVE-2026-11126
An insufficient validation of untrusted input flaw was found in the DevTools component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501528031...
CVE-2026-11120
An insufficient validation of untrusted input flaw was found in the Enterprise Reporting component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501467566...
CVE-2026-11113
An insufficient validation of untrusted input flaw was found in the ANGLE component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500560764...
CVE-2026-11098
An insufficient validation of untrusted input flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500315455...
CVE-2026-11027
An insufficient validation of untrusted input flaw was found in the Glic component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497604407...
CVE-2026-11008
An insufficient validation of untrusted input flaw was found in the WebAppInstalls component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495864099...
CVE-2026-10966
An insufficient validation of untrusted input flaw was found in the Codecs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=511713779...
CVE-2026-10922
An insufficient validation of untrusted input flaw was found in the DevTools component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=499164652...
Grafana <= 6.7.1 - Cross-Site Scripting
Grafana through 6.7.1 contains an unauthenticated stored cross-site scripting vulnerability due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot...
Chromium: CVE-2026-11259 Insufficient validation of untrusted input in Cast
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2026-11149 Insufficient validation of untrusted input in Extensions
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
EUVD-2026-34607
Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
EUVD-2026-34471
Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...