8424 matches found
DEBIAN-CVE-2019-13727
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
CVE-2019-13727
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
Design/Logic Flaw
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
CVE-2019-13741
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content...
Input validation
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content...
UBUNTU-CVE-2019-13741
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content...
UBUNTU-CVE-2019-13727
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
CVE-2019-13741
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content...
CVE-2019-13741
CVE-2019-13741 affects Blink in Google Chrome before 79.0.3945.79, where untrusted clipboard input could be insufficiently validated, enabling a local attacker to bypass the same-origin policy via crafted clipboard data. Impact is local, with partial confidentiality/integrity/availability concern...
CVE-2019-13741
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content...
CVE-2019-13727
CVE-2019-13727 is a policy-enforcement error in Chrome’s WebSockets implementation that could allow a remote attacker to bypass the same-origin policy via a crafted HTML page. The vulnerability affects Google Chrome versions prior to 79.0.3945.79, with the issue explicitly tied to insufficient po...
CVE-2019-13727
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
CVE-2019-13727
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
same-tractors.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1035995 Security Researcher metamorfosec Helped patch 1963 vulnerabilities Received 9 Coordinated Disclosure badges Received 31 recommendations , a holder of 9 badges for responsible and coordinated disclosure, found a security vulnerability affecting same-tractors.com...
Stripo Inc: No CSRF Protection in Resend Confirmation Email feature leads to Sending Unwanted Email in Victim's Inbox without knowing Victim's email address
Summary: There's no CSRF protection in confirmation email resending feature as a result of which an attacker can trick the victim to receive a confirmation email unknowingly. In other features of the website, the content-type must be "application/json", and there is same-origin policy, which...
The vulnerability of the Firefox browser’s Reader View function, which allows a hacker to execute arbitrary code.
The vulnerability of the Firefox Browser’s Reader View function is related to errors in processing cookie files with the SameSite attribute. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...
CVE-2019-13682
Insufficient policy enforcement in external protocol handling in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
DEBIAN-CVE-2019-13682
Insufficient policy enforcement in external protocol handling in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
CVE-2019-13682
Insufficient policy enforcement in external protocol handling in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass same origin policy via a crafted HTML page...
UBUNTU-CVE-2019-13682
Insufficient policy enforcement in external protocol handling in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass same origin policy via a crafted HTML page...