Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reuse of the Presentation API after it was released, which could allow remote attackers to execute arbitrary...

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fixed the svcdeferredevent trace class. Fixed a NULL dereference crash that occurs when an svcrqst is deferred, while the sunrpc tracing subsystem is enabled. svcrevisit sets dr-xprt to NULL, so it cannot be relied upon i...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006667)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006667 advisory. In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix the svcdeferredevent trace class Fix a NULL deref crash that occurs when an svcrqst i...

CVE-2026-5236

A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4BitReader::SkipBits of the file Ap4Dac4Atom.cpp of the component DSI v1 Parser. Such manipulation of the argument npresentations leads to heap-based buffer overflow. The attack needs to be performed...

ROS-20260327-73-0002

Vulnerability in busybox related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to conduct spoofing attacks...

ROS-20260310-73-0014

A vulnerability in the Split View component of Google Chrome browser is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow a remote attacker to conduct spoofing attacks...

Textream 访问控制错误漏洞

Textream is an audio/visual presentation application developed by Fatih Kadir Akın. Versions of Textream prior to 1.5.1 contained a security vulnerability related to access control. This vulnerability stemmed from the DirectorServer WebSocket server failing to validate the HTTP Origin header duri...

XWiki – Stored Cross-Site Scripting (XSS)

XWiki through version 17.3.0 contains stored cross-site scripting caused by improper sanitization of inputs in the Administration interface's Presentation section, letting authenticated administrators inject JavaScript that executes in visitors' browsers, exploit requires administrator...

ROS-20260122-73-0018

A vulnerability in the Downloads component of the Google Chrome browser is related to user interface presentation errors. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions by using a specially crafted HTML page...

Malicious Package

Overview presentation-test-utilities is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

EUVD-2026-3097

Malicious code in presentation-test-utilities npm...

Malicious code in presentation-test-utilities (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b481e6b9e82f740ebadaad84b281196fae93b52b14c302f7763234319c732f3e The package presentation-test-utilities was found to contain malicious code. Source: ghsa-malware...

MAL-2026-300 Malicious code in presentation-test-utilities (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b481e6b9e82f740ebadaad84b281196fae93b52b14c302f7763234319c732f3e The package presentation-test-utilities was found to contain malicious code. Source: ghsa-malware...

CVE-2022-26511

WPS Presentation 11.8.0.5745 insecurely load d3dx941.dll when opening .pps files'current directory type' DLL loading...

ROS-20251216-7373

A vulnerability in the Omnibox component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...

ROS-20251216-7372

A vulnerability in the SplitView component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface...

ROS-20251216-7362

A vulnerability in the Omnibox component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...

CVE-2025-65815

A lack of security checks in the file import process of AB TECHNOLOGY Document Reader: PDF, DOC, PPT v65.0 allows attackers to execute a directory traversal...

ROS-20251202-03

Vulnerability in DecodeConfig component of Golang programming language is related to uncontrolled consumption of resources. resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial-of-service condition. denial of service A vulnerability in the Downloa...

CVE-2023-7326 Epson Stylus SX510W Printer Remote Power Off DoS

The Epson Stylus SX510W embedded web management service fails to properly handle consecutive ampersand characters in query parameters when accessing /PRESENTATION/HTML/TOP/INDEX.HTML. A remote attacker can send a malformed request that triggers improper input parsing or memory handling, resulting...