43 matches found
CVE-2026-12034
The following flaw was identified in the Chromium browser: Insufficient validation of untrusted input Linux Toolkit Theming. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=519258799...
SUSE CVE-2026-12034
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2026-12034
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...
DEBIAN-CVE-2026-12034
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2026-12034
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2026-12034
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2026-12034
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...
CVE-2026-12034
The CVE-2026-12034 entry describes an issue in Google Chrome on Linux where Linux Toolkit Theming mishandles untrusted input, allowing a renderer process in a compromised sandbox to escape via a malicious file. Affected software: Google Chrome on Linux (pre-149.0.7827.115). Root cause: insufficie...
PT-2026-48780
Name of the Vulnerable Software and Affected Versions Google Chrome on Linux versions prior to 149.0.7827.115 Description Insufficient validation of untrusted input in the Linux Toolkit Theming component allows a remote attacker who has already compromised the renderer process to potentially...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...
[SECURITY] Fedora 44 Update: kf6-ktexttemplate-6.25.0-1.fc44
The goal of KTextTemplate is to make it easier for application developers to separate the structure of documents from the data they contain, opening the d oor for theming and advanced generation of other text such as code...
EUVD-2026-17213
CI4MS: Permissions Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS...
CVE-2026-34557
CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.0.0, the application fails to properly sanitize user-controlled input within group and role management functionality. Multiple input...
Malicious code in foundations-theming-base (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d58f9a087aa35c09a66eecf85d207eecd0a562d059891388be07c1b47f566db6 The package foundations-theming-base was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-204506
Malicious code in foundations-theming-base npm...
Malicious Package
Overview foundations-theming-base is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
MAL-2025-192630 Malicious code in foundations-theming-base (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d58f9a087aa35c09a66eecf85d207eecd0a562d059891388be07c1b47f566db6 The package foundations-theming-base was found to contain malicious code. Source: ghsa-malware...
Malicious code in persistent-tan-herring (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3cd80cbb90b3a74e1270e0b20b88a5b9737704ff8c2ef54a2fa9b55fb127f82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dasnoo-theming (npm)
The package dasnoo-theming was found to contain malicious code...
MAL-2025-17988 Malicious code in dasnoo-theming (npm)
The package dasnoo-theming was found to contain malicious code...