Lucene search
K

54 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Chromium

In the Sign-In Flow in Google Chrome, using after free before version 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7.3AI score0.00632EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Chromium

Before version 105.0.5195.52, using “after free” in the Sign-In Flow in Google Chrome allowed a remote attacker who convinced a user to engage in certain UI interactions to potentially exploit heap corruption through crafted UI interactions...

8.8CVSS6.8AI score0.0064EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/08 2:59 p.m.12 views

CVE-2026-11436

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS4AI score0.00263EPSS
Exploits0References1
NVD
NVD
added 2026/06/06 4:16 p.m.14 views

CVE-2026-11436

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS0.00263EPSS
Exploits0References5
CVE
CVE
added 2026/06/06 3:45 p.m.30 views

CVE-2026-11436

Mage AI up to version 0.9.79 is affected in the Sign-in Flow. The vulnerability is in the useMutation function within mage_ai/frontend/components/Sessions/SignForm/index.tsx, where manipulating the query.redirect_url argument triggers cross site scripting. Remote exploitation is possible, and the...

5.3CVSS4.1AI score0.00263EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/06 3:45 p.m.40 views

CVE-2026-11436 Mage AI Sign-in Flow index.tsx useMutation cross site scripting

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS0.00263EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/06 3:45 p.m.9 views

CVE-2026-11436 Mage AI Sign-in Flow index.tsx useMutation cross site scripting

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS4.1AI score0.00263EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-34861

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00632EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-42490

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.0064EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/01/23 9:22 p.m.5 views

CVE-2025-0693 Issue with AWS Sign-in IAM User Login Flow - Possible Username Enumeration

Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account...

6.9CVSS6.6AI score0.00358EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.35 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10086-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.00799EPSS
Exploits3References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.5 views

SUSE CVE-2022-2614

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.00632EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.7 views

SUSE CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS9.2AI score0.00793EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:31 a.m.5 views

SUSE CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS9.2AI score0.0064EPSS
Exploits0References5
OSV
OSV
added 2022/09/26 4:15 p.m.20 views

CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS9.4AI score
Exploits0References4
NVD
NVD
added 2022/09/26 4:15 p.m.24 views

CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS0.0064EPSS
Exploits0References4
OSV
OSV
added 2022/09/26 4:15 p.m.4 views

DEBIAN-CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS7.4AI score0.0064EPSS
Exploits0References1
OSV
OSV
added 2022/09/26 4:15 p.m.24 views

CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS9AI score
Exploits0References3
NVD
NVD
added 2022/09/26 4:15 p.m.20 views

CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS0.00793EPSS
Exploits0References3
OSV
OSV
added 2022/09/26 4:15 p.m.4 views

DEBIAN-CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS8.2AI score0.00793EPSS
Exploits0References1
Rows per page
Query Builder