2 matches found
CVE-2026-35208
CVE-2026-35208 affects lichess.org: an Unsanitized Stream Title Injection occurs in the streamer workflow where approved streamers can inject HTML into the /streamer page and the Live streams widget by providing a title, which is rendered in the UI as-is. CSP blocks inline scripts, but the vulner...
RealPlayer for Windows < Build 12.0.1.609 Multiple Vulnerabilities
According to its build number, the installed version of RealPlayer on the remote Windows host is affected by multiple vulnerabilities: - An error in the 'Cook' codec initialization function and can be used to access uninitialized memory. CVE-2010-0121 - Freed pointer access in the handling of the...