EUVD-2025-74465

Malicious code in medievalthrushgray-55 npm...

CVE-2017-7796

On Windows systems, the logger run by the Windows updater deletes the file "update.log" before it runs in order to write a new log of that name. The path to this file is supplied at the command line to the updater and could be used in concert with another local exploit to delete a different file...

Mozilla Firefox and Firefox ESR Buffer Overflow Vulnerability (CNVD-2017-22573)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A buffer overflow vulnerability exists in Mozilla Firefox versions prior to 55 and Firefox ESR...

Mozilla Firefox and Firefox ESR Information Disclosure Vulnerability (CNVD-2017-22569)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. An information disclosure vulnerability exists in Mozilla Firefox versions prior to 55 and Firefo...

chromium-browser: universal xss in blink

Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac, incorrectly handles deferred page loads, which allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page...

Google Chrome PDFium File Download Bypass Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. PDFium is one of the open source PDF rendering engine. A security vulnerability exists in PDFium in versions of Google Chrome prior to 55.0.2883.75. An attacker can exploit this vulnerability to obtain sensitive...