VulnCheck KEV: CVE-2024-0519

Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google...

New Info Stealer Bandit Stealer Targets Browsers, Wallets

This is an analysis of Bandit Stealer, a new Go-based information-stealing malware capable of evading detection as it targets multiple browsers and cryptocurrency wallets...

IceHrm 代码问题漏洞

IceHrm is a human resource management Hrm system. The system includes features such as employee management, leave management and payroll management. A security vulnerability exists in IceHrm 30.0.0 OS, which stems from the fact that logging out from an administrator account does not invalidate an...

in cortezaproject/corteza-server

Set up the cortezaproject in your local machine. Steps: -------- 1. Create the account on corteza 2. Login using same credentails from chrome and firefox. 3. Change user password from chrome. 4. Perform any activity in Firefox the session is still valid. Mitigation: --------------- After changing...

VulnCheck KEV: CVE-2021-37976

Google Chromium contains an information disclosure vulnerability within the core memory component that allows a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium,...

VulnCheck KEV: CVE-2021-21220

Google Chromium V8 Engine contains an improper input validation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome,...

VulnCheck KEV: CVE-2020-16013

Google Chromium V8 Engine contains an inappropriate implementation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome,...

VulnCheck KEV: CVE-2016-1646

Google Chromium V8 Engine contains an out-of-bounds read vulnerability that allows a remote attacker to cause a denial of service or possibly have another unspecified impact via crafted JavaScript code. This vulnerability could affect multiple web browsers that utilize Chromium, including, but...

TestingWhiz - Test Automation Tool

TestingWhiz is a test automation tool for web, database, cloud, mobile and web services/API testing from Cygnet Infotech. It has a codeless architecture based on FAST Automation Engine with 290+ readily available test commands that provide easy, intuitive and fast automation solution without...

Multiple browsers certificates validation weakness

Wildmasks in certificates issued to IP address are enabled...

Multiple browsers DoS

Mail program compose message window is created for avery frame with mailto:, news:, nntp:, etc URI...

Multiple Browsers - 'history.go()' Denial of Service

DrIDE - Camino 2.0.2 & Safari 4.0.5 DoS PoC function test window.onerror=new Function"history.go-1"; window.open'http://www.exploit-db.com'; test; test;...

Canvas tag DoS - Multiple Browsers

Exploit for multiple platform in category dos / poc ================================== Canvas tag DoS - Multiple Browsers ================================== "; while 1 echo ""; echo ""; echo ""; ? 0day.today 2018-04-11...

Multiple Browsers - Audio Tag Denial of Service

Multiple Browsers - Audio Tag Denial of Service !/usr/bin/python Multiple Browsers Audio Tag Denial of Service Vulnerability any ogg file can be used for the DoS as long as it is a valid file on the server crash reporter for Mac seems to think this is a EXECBADACCESS This script acts as a web...

Multiple Browsers - Audio Tag Denial of Service

!/usr/bin/python Multiple Browsers Audio Tag Denial of Service Vulnerability any ogg file can be used for the DoS as long as it is a valid file on the server crash reporter for Mac seems to think this is a EXECBADACCESS This script acts as a web server to DoS connecting clients Exploit Title:...

Multiple browsers DoS

select method doesn't limie the number of selected elements, leading to resources exhaustion...

Multiple browsers DoS

Crash or resources exhaustion on oversized unicode string operations via Javascript...

Apple QuickTime (Multiple Browsers) - Command Execution

Apple QuickTime Multiple Browsers - Command Execution milw0rm.com 2007-09-12...

Apple Quicktime (Multiple Browsers) Command Execution PoC (0day)

Exploit for multiple platform in category remote exploits ================================================================ Apple Quicktime Multiple Browsers Command Execution PoC 0day ================================================================ 0day.today 2018-01-06...

Apple QuickTime (Multiple Browsers) - Command Execution

milw0rm.com 2007-09-12...