Lucene search
K

12 matches found

Github Security Blog
Github Security Blog
added 2026/05/06 11:43 p.m.17 views

Playwright Capture permits access to local files and internal network resources during page capture

Playwright Capture did not sufficiently restrict navigations and resource requests initiated by rendered pages. An attacker-controlled page could abuse browser-side redirection mechanisms, such as window.location.href, to make the capture process open file:// URLs or request resources hosted on...

8.7CVSS5.8AI score0.00319EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/05/06 11:43 p.m.7 views

GHSA-687H-XW6F-Q2QW Playwright Capture permits access to local files and internal network resources during page capture

Playwright Capture did not sufficiently restrict navigations and resource requests initiated by rendered pages. An attacker-controlled page could abuse browser-side redirection mechanisms, such as window.location.href, to make the capture process open file:// URLs or request resources hosted on...

8.7CVSS5.8AI score0.00319EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.11 views

PT-2026-38317

Name of the Vulnerable Software and Affected Versions Playwright Capture affected versions not specified Description Playwright Capture fails to sufficiently restrict navigations and resource requests initiated by rendered pages. An attacker-controlled page can abuse browser-side redirection...

8.7CVSS5.8AI score0.00319EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3824

Malware in sbrugna...

7.2CVSS6.4AI score0.00351EPSS
Exploits0References7
OSV
OSV
added 2018/12/03 3:29 p.m.1 views

CVE-2018-1840

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to gain elevated privileges on the system, caused when a security domain is configured to use a federated repository other than global federated repository and then migrated to a newer release of WebSphere Application...

8.1CVSS5.8AI score0.02138EPSS
Exploits0References3
Prion
Prion
added 2009/03/30 4:30 p.m.20 views

Code injection

Unspecified vulnerability in Sun OpenSolaris snv100 through snv101 allows local users, with privileges in a non-global zone, to execute arbitrary code in the global zone when a global-zone user is using mdb on a non-global zone process...

6.9CVSS7.8AI score0.00394EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2009/03/30 4:30 p.m.20 views

CVE-2009-1170

Unspecified vulnerability in Sun OpenSolaris snv100 through snv101 allows local users, with privileges in a non-global zone, to execute arbitrary code in the global zone when a global-zone user is using mdb on a non-global zone process...

6.9CVSS7.2AI score0.00394EPSS
Exploits0References5
CVE
CVE
added 2009/03/30 4:0 p.m.52 views

CVE-2009-1170

The CVE-2009-1170 entry concerns Sun OpenSolaris SNV 100–101. A local user with non-global-zone privileges can cause arbitrary code execution in the global zone when a global-zone user runs mdb on a non-global-zone process. The available documents describe the vulnerable condition and impact but ...

6.9CVSS7.4AI score0.00394EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2009/03/30 4:0 p.m.26 views

CVE-2009-1170

Unspecified vulnerability in Sun OpenSolaris snv100 through snv101 allows local users, with privileges in a non-global zone, to execute arbitrary code in the global zone when a global-zone user is using mdb on a non-global zone process...

7.2AI score0.00394EPSS
Exploits0References5
NVD
NVD
added 2008/08/27 8:41 p.m.17 views

CVE-2008-3838

Unspecified vulnerability in the NFS Remote Procedure Calls RPC zones implementation in Sun Solaris 10 and OpenSolaris before snv88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of...

7.2CVSS6.6AI score0.00351EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/08/27 8:0 p.m.25 views

CVE-2008-3838

Unspecified vulnerability in the NFS Remote Procedure Calls RPC zones implementation in Sun Solaris 10 and OpenSolaris before snv88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of...

6.6AI score0.00351EPSS
Exploits0References6
CVE
CVE
added 2007/02/02 9:0 p.m.43 views

CVE-2007-0668

The CVE-2007-0668 entry covers Sun Solaris 10’s Loopback Filesystem (LOFS). Affected: LOFS in a non-global zone. Issue: local users can move and rename files within a read-only filesystem, which can cause a denial of service. Root cause: insufficient protection of file operations in LOFS enabling...

6.2CVSS6.3AI score0.00299EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder