Lucene search
K

2173 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.7 views

Chromium: CVE-2026-11148 Inappropriate implementation in Payments

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00137EPSS
Exploits0
NVD
NVD
added 2026/06/09 6:16 a.m.14 views

CVE-2026-4986

The WPForms WordPress plugin before 1.10.0.5 does not verify the authenticity of incoming PayPal webhook events before processing them, allowing unauthenticated attackers to forge webhook payloads and manipulate the payment state of arbitrary transactions...

5.3CVSS0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 6:0 a.m.10 views

EUVD-2026-35351

The WPForms WordPress plugin before 1.10.0.5 does not verify the authenticity of incoming PayPal webhook events before processing them, allowing unauthenticated attackers to forge webhook payloads and manipulate the payment state of arbitrary transactions...

5.3CVSS5.6AI score0.00197EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 6:0 a.m.37 views

CVE-2026-4986 WPForms Lite < 1.10.0.5 – Unauthenticated PayPal Webhook Forgery

The WPForms WordPress plugin before 1.10.0.5 does not verify the authenticity of incoming PayPal webhook events before processing them, allowing unauthenticated attackers to forge webhook payloads and manipulate the payment state of arbitrary transactions...

0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 12:33 a.m.10 views

EUVD-2026-35264

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00252EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/09 12:33 a.m.10 views

EUVD-2026-35257

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00252EPSS
Exploits0References3
NVD
NVD
added 2026/06/09 12:16 a.m.10 views

CVE-2026-11664

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00252EPSS
Exploits0References2
OSV
OSV
added 2026/06/09 12:16 a.m.9 views

DEBIAN-CVE-2026-11664

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.6AI score0.00252EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 12:16 a.m.11 views

CVE-2026-11657

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00252EPSS
Exploits0References2
OSV
OSV
added 2026/06/09 12:16 a.m.8 views

DEBIAN-CVE-2026-11657

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00252EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.13 views

WordPress plugin WPForms 安全漏洞

WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is a security vulnerability in the WPForms plugin. This vulnerability stems from...

5.3CVSS6AI score0.00197EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/08 11:27 p.m.34 views

CVE-2026-11664

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

0.00252EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/08 11:27 p.m.11 views

CVE-2026-11664

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00252EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/06/08 11:27 p.m.7 views

CVE-2026-11664

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.6AI score0.00252EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/08 11:27 p.m.5 views

CVE-2026-11664

Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.6AI score0.00252EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/08 11:27 p.m.29 views

CVE-2026-11664

This CVE (CVE-2026-11664) affects Google Chrome’s Payments component and concerns a use-after-free in the Payments pathway that could enable remote heap corruption via a crafted HTML page. The vulnerability is rooted in use-after-free semantics within Chromium’s Payments code, leading to potentia...

8.8CVSS5.6AI score0.00252EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/08 11:27 p.m.8 views

CVE-2026-11657

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

6AI score0.00252EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/08 11:27 p.m.12 views

CVE-2026-11657

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00252EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/08 11:27 p.m.36 views

CVE-2026-11657

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

0.00252EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/08 11:27 p.m.6 views

CVE-2026-11657

Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00252EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder