Lucene search
K

36 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in the Side Panel Search in Google Chrome before version 120.0.6099.62 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption through those interactions. Chromium security severity: High...

8.8CVSS7.2AI score0.00993EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-8851

Malware in sbrugna...

5.4CVSS5.5AI score0.00513EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28771

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00358EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-27626

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Reflected Cross-Site Scripting XSS vulnerability has been identified in Dotclear version 2.29. The flaw exists within the Search functionality of the Admin...

6.1CVSS5.3AI score0.00429EPSS
Exploits0References2
OSV
OSV
added 2025/07/07 8:15 p.m.3 views

CVE-2025-7142

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Salon Management System 1.0. Affected by this issue is some unknown functionality of the file /panel/search-appointment.php. The manipulation leads to cross site scripting. The attack may be launched...

5.4CVSS3.8AI score0.00267EPSS
Exploits1References5
OSV
OSV
added 2025/06/30 1:15 a.m.7 views

CVE-2025-6878

A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /panel/search-appointment.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated...

8.8CVSS5.8AI score0.00358EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/06/30 12:0 a.m.3 views

SourceCodester Best Salon Management System 注入漏洞

SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 suffers from an injection vulnerability, which originates from a SQL injection due to the incorrect operation of the parameter searchdata in...

8.8CVSS6.9AI score0.00358EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 9:39 a.m.8 views

CVE-2024-27626

A Reflected Cross-Site Scripting XSS vulnerability has been identified in Dotclear version 2.29. The flaw exists within the Search functionality of the Admin Panel...

6.1CVSS5.7AI score0.00429EPSS
Exploits0References1
OSV
OSV
added 2024/03/21 2:52 a.m.2 views

UBUNTU-CVE-2024-27626

A Reflected Cross-Site Scripting XSS vulnerability has been identified in Dotclear version 2.29. The flaw exists within the Search functionality of the Admin Panel...

6.1CVSS5.7AI score0.00429EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.4 views

Dotclear 安全漏洞

Dotclear is an open source blog publishing application from Dotclear Open Source. A security vulnerability exists in Dotclear version 2.29, which stems from a reflected cross-site scripting XSS vulnerability in the Search function of Admin Panel...

6.1CVSS5.6AI score0.00429EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.27 views

openSUSE Security Advisory (openSUSE-SU-2024:0020-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.43238EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2024/02/18 12:0 a.m.40 views

GLSA-202402-14 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-14 QtWebEngine: Multiple Vulnerabilities - Use after free in Garbage Collection in Google Chrome prior to 119.0.6045.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium...

9.6CVSS7.9AI score0.43238EPSS
Exploits4References30
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2024/01/08 12:0 a.m.55 views

Stable Channel Update for ChromeOS / ChromeOS Flex

Hello All, The Stable channel is being updated to 120.0.6099.203 Platform version: 15662.64.0 for most ChromeOS devices and will be rolled out over the next few days. If you find new issues, please let us know one of the following ways: File a bug Visit our Chrome OS communities General: Chromebo...

8.8CVSS8.5AI score0.07356EPSS
Exploits3Affected Software1
OSV
OSV
added 2023/12/26 10:29 a.m.15 views

MGASA-2023-0355 New chromium-browser-stable 120.0.6099.129 fixes bugs and vulnerabilities

The chromium-browser-stable package has been updated to the 120.0.6099.129 release, fixing bugs and 20 vulnerabilities, together with 120.0.6099.109, 120.0.6099.71 and 120.0.6099.62; some of them are listed below. High CVE-2023-6508: Use after free in Media Stream. Reported by Cassidy...

8.8CVSS8.3AI score0.43238EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.35 views

FreeBSD : chromium -- multiple security fixes (4405e9ad-97fe-11ee-86bb-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4405e9ad-97fe-11ee-86bb-a8a1599412c6 advisory. - Use after free in Media Stream in Google Chrome prior to 120.0.6099.62 allowed a remote...

8.8CVSS7.2AI score0.01286EPSS
Exploits0References7
Veracode
Veracode
added 2023/12/09 3:46 a.m.34 views

Use After Free

Chromium is vulnerable to Use After Free. The vulnerability is due to improper memory management in Side Panel Search in Google Chrome. This allows an attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific UI interaction...

8.8CVSS6.7AI score0.00993EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/12/09 12:0 a.m.37 views

Debian DSA-5573-1 : chromium - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5573 advisory. Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. For the...

8.8CVSS7.2AI score0.01286EPSS
Exploits0References14
Microsoft CVE
Microsoft CVE
added 2023/12/07 6:59 p.m.35 views

Chromium: CVE-2023-6509 Use after free in Side Panel Search

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.00993EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/12/07 12:0 a.m.46 views

Microsoft Edge (Chromium) < 120.0.2210.61 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 120.0.2210.61. It is, therefore, affected by multiple vulnerabilities as referenced in the December 7, 2023 advisory. - Microsoft Edge Chromium-based Elevation of Privilege Vulnerability CVE-2023-35618 - Microsoft Edge...

9.6CVSS7.1AI score0.02925EPSS
Exploits1References17
NVD
NVD
added 2023/12/06 2:15 a.m.22 views

CVE-2023-6509

Use after free in Side Panel Search in Google Chrome prior to 120.0.6099.62 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via specific UI interaction. Chromium security severity: High...

8.8CVSS0.00993EPSS
Exploits0References6
Rows per page
Query Builder