5 matches found
CVE-2026-3846
CVE-2026-3846: A same-origin policy bypass in Firefox’s CSS Parsing and Computation component. Affected: Mozilla Firefox before 148.0.2. Root cause: bypass in CSS parsing/calculation logic. Impact: potential security restriction bypass (I: High per CVSS data). Status: fixed in Firefox 148.0.2; re...
Vim 安全漏洞
Vim is an open-source, cross-platform text editor developed by Vim developers. Versions of Vim prior to 9.2.0075 contained security vulnerabilities. These vulnerabilities stemmed from Emacs-style tag file parsing logic, which had a heap-based buffer underflow issue. This issue could lead to...
Fedora 42 : roundcubemail (2025-fec36f9eaf)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-fec36f9eaf advisory. Release 1.6.12 - Support IPv6 in database DSN 9937 - Don't force specific errorreporting setting - Fix compatibility with PHP 8.5 regarding arrayfir...
PT-2024-4034 · Unknown · Php-Svg-Lib
Name of the Vulnerable Software and Affected Versions: php-svg-lib versions prior to 0.5.2 Description: The issue is related to the failure of php-svg-lib to validate that the font-family does not contain a PHAR url, which may lead to remote code execution RCE on PHP versions less than 8.0...
CVE-2019-5030
A buffer overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Converter V7.0 Pro MR1 7,0,2019,0220. While parsing a document text info container, the TxMasterStyleAtom::parse function is incorrectly checking the bounds corresponding to...