Lucene search
+L

5 matches found

NVD
NVD
added 2026/06/30 11:17 p.m.6 views

CVE-2026-14023

Insufficient validation of untrusted input in SanitizerAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00319EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:38 p.m.29 views

CVE-2026-14023

Google Chrome (Chromium) SanitizerAPI in affected builds is vulnerable due to insufficient validation of untrusted input, allowing a remote attacker to bypass the same-origin policy via a crafted HTML page. Affected version range is prior to 150.0.7871.47; vendor/chromium references indicate the ...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/14 7:52 p.m.18 views

CVE-2026-8539

CVE-2026-8539 describes a script injection (UXSS) in Chrome on Android via the SanitizerAPI, exploitable through a crafted HTML page. Affected software: Google Chrome for Android (Chromium-based). Vulnerable component: SanitizerAPI. Root cause: insufficient input handling in SanitizerAPI leading ...

5.4CVSS6AI score0.00159EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-7939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a...

5.4CVSS6.3AI score0.00165EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/06 9:31 p.m.8 views

EUVD-2026-27981

Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6AI score0.00165EPSS
Exploits0References3
Rows per page
Query Builder