Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8386 matches found

CVE
CVEadded 2015/12/06 1:0 a.m.96 views

CVE-2015-6772

CVE-2015-6772 refers to a flaw in Blink used by Google Chrome before 47.0.2526.73, where the DOM implementation did not prevent javascript: URL navigation while a document was detached. This enables bypass of the Same Origin Policy through crafted JavaScript interactions with a plugin. The issue ...

7.5CVSS8.9AI score0.01635EPSS
Exploits1References10Affected Software1
CVE
CVEadded 2015/12/06 1:0 a.m.99 views

CVE-2015-6770

CVE-2015-6770 affects Google Chrome

7.5CVSS8.9AI score0.01957EPSS
Exploits1References9Affected Software1
CVE
CVEadded 2015/12/06 1:0 a.m.92 views

CVE-2015-6768

CVE-2015-6768 affects Google Chrome/Chromium prior to 47.0.2526.73. The issue allows a remote attacker to bypass the Same Origin Policy via unspecified vectors (a separate vulnerability from CVE-2015-6770). Public references note this as a cross-origin bypass in the DOM/SOP handling within Chrome...

7.5CVSS8.9AI score0.01923EPSS
Exploits1References9Affected Software1
Debian CVE
Debian CVEadded 2015/12/06 1:0 a.m.22 views

CVE-2015-6772

Removed by vendor...

7.5CVSS8.7AI score0.01635EPSS
Exploits1
Debian CVE
Debian CVEadded 2015/12/06 1:0 a.m.23 views

CVE-2015-6769

Removed by vendor...

7.5CVSS8.7AI score0.02009EPSS
Exploits1
Debian CVE
Debian CVEadded 2015/12/06 1:0 a.m.31 views

CVE-2015-6770

Removed by vendor...

7.5CVSS8.7AI score0.01957EPSS
Exploits1
UbuntuCve
UbuntuCveadded 2015/12/05 12:0 a.m.26 views

CVE-2015-6769

The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing...

7.5CVSS7.2AI score0.02009EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2015/12/05 12:0 a.m.26 views

CVE-2015-6770

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6768...

7.5CVSS7.1AI score0.01957EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2015/12/05 12:0 a.m.23 views

CVE-2015-6768

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6770...

7.5CVSS7.1AI score0.01923EPSS
Exploits1References3
OSV
OSVadded 2015/12/05 12:0 a.m.3 views

UBUNTU-CVE-2015-6770

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6768...

7.5CVSS7.2AI score0.01957EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2015/12/05 12:0 a.m.22 views

CVE-2015-6772

The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent javascript: URL navigation while a document is being detached, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code that improperly interacts with a plugin...

7.5CVSS7.2AI score0.01635EPSS
Exploits1References3
OSV
OSVadded 2015/12/05 12:0 a.m.0 views

UBUNTU-CVE-2015-6768

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6770...

7.5CVSS7.2AI score0.01923EPSS
Exploits1References4
OSV
OSVadded 2015/12/05 12:0 a.m.0 views

UBUNTU-CVE-2015-6769

The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing...

7.5CVSS7.2AI score0.02009EPSS
Exploits1References4
OSV
OSVadded 2015/12/05 12:0 a.m.2 views

UBUNTU-CVE-2015-6772

The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent javascript: URL navigation while a document is being detached, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code that improperly interacts with a plugin...

7.5CVSS7.3AI score0.01635EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2015/12/04 12:0 a.m.28 views

Google Chrome < 45.0.2454.101 Multiple Vulnerabilities

Binary data 9015.pasl...

7.5CVSS9.7AI score0.01729EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2015/12/04 12:0 a.m.35 views

Google Chrome < 46.0.2490.71 Multiple Vulnerabilities

Binary data 9016.pasl...

7.5CVSS9.4AI score0.02103EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2015/12/04 12:0 a.m.57 views

Google Chrome < 47.0.2526.73 Multiple Vulnerabilities (Mac OS X)

The version of Google Chrome installed on the remote Mac OS X host is prior to 47.0.2526.73. It is, therefore, affected by multiple vulnerabilities : - An out-of-bounds access error exists in Google V8 that is triggered when loading array elements. An attacker can exploit this to have an...

10CVSS8.7AI score0.08115EPSS
Exploits6References25
RedHat Linux
RedHat Linuxadded 2015/12/03 7:39 p.m.1 views

chromium-browser: Cross-origin bypass in DOM

The DOM implementation in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2015-6770...

7.5CVSS7.4AI score0.01957EPSS
Exploits2References5
RedHat Linux
RedHat Linuxadded 2015/12/03 7:39 p.m.3 views

chromium-browser: Cross-origin bypass in DOM

The DOM implementation in Blink, as used in Google Chrome before 47.0.2526.73, does not prevent javascript: URL navigation while a document is being detached, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code that improperly interacts with a plugin...

7.5CVSS7.5AI score0.01635EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2015/12/03 7:39 p.m.1 views

chromium-browser: Cross-origin bypass in core

The provisional-load commit implementation in WebKit/Source/bindings/core/v8/WindowProxy.cpp in Google Chrome before 47.0.2526.73 allows remote attackers to bypass the Same Origin Policy by leveraging a delay in window proxy clearing...

7.5CVSS7.4AI score0.02009EPSS
Exploits1References5
Rows per page
Query Builder