Lucene search
K

7 matches found

OSV
OSV
added 2026/04/03 2:44 a.m.3 views

GHSA-R5P7-GP4J-QHRX Electron: Incorrect origin passed to permission request handler for iframe requests

Impact When an iframe requests fullscreen, pointerLock, keyboardLock, openExternal, or media permissions, the origin passed to session.setPermissionRequestHandler was the top-level page's origin rather than the requesting iframe's origin. Apps that grant permissions based on the origin parameter ...

5.4CVSS5.9AI score0.00122EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.2 views

PT-2026-30007

Impact When an iframe requests fullscreen, pointerLock, keyboardLock, openExternal, or media permissions, the origin passed to session.setPermissionRequestHandler was the top-level page's origin rather than the requesting iframe's origin. Apps that grant permissions based on the origin parameter ...

5.4CVSS5.9AI score0.00122EPSS
Exploits0References4
OSV
OSV
added 2026/02/25 6:49 p.m.6 views

DRUPAL-CONTRIB-2026-016

This module integrates with Islandora, an open-source digital asset management DAM framework. Islandora integrates with various open-source services, which can be run in a distributed environment. The module doesn't sufficiently sanitize URI paths for its custom route used for attaching media to...

5.4CVSS5.2AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2025/09/03 4:15 p.m.4 views

DRUPAL-CONTRIB-2025-105

This module enables you to connect a Drupal site to the Acquia DAM service, which syncs media from the third party service to the site. The module doesn't sufficiently validate authorization to a list of DAM assets currently synced to the website creating an access bypass vulnerability. This...

7.5CVSS6.6AI score0.0028EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/06/15 12:0 a.m.27 views

Google Chrome < 42.0.2311.90 Multiple Vulnerabilities

Binary data 8778.pasl...

5CVSS8.3AI score0.01648EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/04/16 12:0 a.m.35 views

Google Chrome < 42.0.2311.90 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 42.0.2311.90. It is, therefore, affected by multiple vulnerabilities as referenced in the 201504stable-channel-update14 advisory. - Multiple unspecified vulnerabilities in Google Chrome before 42.0.2311.90 allow attackers...

7.5CVSS8.9AI score0.02702EPSS
Exploits1References26
Tenable Nessus
Tenable Nessus
added 2015/04/16 12:0 a.m.32 views

Google Chrome < 42.0.2311.90 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 42.0.2311.90. It is, therefore, affected by multiple vulnerabilities as referenced in the 201504stable-channel-update14 advisory. - Multiple unspecified vulnerabilities in Google Chrome before 42.0.2311.90 allow attacke...

7.5CVSS8.9AI score0.02702EPSS
Exploits1References26
Rows per page
Query Builder