Astra Linux - уязвимость в chromium

Inappropriate implementations of navigation functions in Google Chrome on iOS before version 90.0.4430.72 allowed a remote attacker to leak cross-origin data through a crafted HTML page...

EUVD-2018-9986

Malware in sbrugna...

EUVD-2022-52164

Malicious code in bioql PyPI...

CVE-2025-8038

Thunderbird ignored paths when checking the validity of navigations in a frame. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

CVE-2025-8038 CSP frame-src was not correctly enforced for paths

Thunderbird ignored paths when checking the validity of navigations in a frame. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

CVE-2023-6871

Under certain conditions, Firefox did not display a warning when a user attempted to navigate to a new protocol handler. This vulnerability affects Firefox 121...

PT-2025-4666 · Unknown · Navigation Du Lapin Blanc

Name of the Vulnerable Software and Affected Versions: Navigation Du Lapin Blanc versions n/a through 1.1.1 Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker...

PT-2020-14247

Name of the Vulnerable Software and Affected Versions Electron versions prior to 11.0.0-beta.1 Electron versions prior to 10.0.1 Electron versions prior to 9.3.0 Electron versions prior to 8.5.1 Description The will-navigate event can be bypassed when a sub-frame performs a top-frame navigation...