CVE-2026-3779

The application's list box calculate array logic keeps stale references to page or form objects after they are deleted or re-created, which allows crafted documents to trigger a use-after-free when the calculation runs and can potentially lead to arbitrary code execution...

@faltest/browser (>=7.0.1 <=7.0.4), @faltest/lifecycle (>=10.0.0 <=10.0.7) +1 more potentially affected by unknown CVE via verror-extra (=6.0.0)

verror-extra NPM version =6.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on verror-extra and may be impacted: - @faltest/browser =7.0.1, =10.0.0, =8.0.0, =8.0.7 Source cves: unknown CVE Source advisory: OSV:MAL-2025-47360...

MAL-2025-15540 Malicious code in bby-page-objects (npm)

The package bby-page-objects was found to contain malicious code...

Malicious code in bby-page-objects (npm)

The package bby-page-objects was found to contain malicious code...

SUSE CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document...

CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document...

UBUNTU-CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document...