51 matches found
CVE-2026-3223
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google Web Designer...
EUVD-2026-9027
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google Web Designer...
CVE-2026-3223
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google Web Designer...
CVE-2026-3223 Zip Slip leading to Arbitrary File Write and Privilege Escalation in Google Web Designer
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google Web Designer...
CVE-2026-3223
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google Web Designer...
CVE-2026-3223 Zip Slip leading to Arbitrary File Write and Privilege Escalation in Google Web Designer
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google Web Designer...
CVE-2026-3223
This CVE (CVE-2026-3223) concerns a Zip Slip vulnerability in Google Web Designer that enables Arbitrary file write and potential Privilege Escalation. The issue relates to the extraction process allowing unauthorized files to be written, affecting Google Web Designer as the affected product. Und...
Google Web Designer 安全漏洞
Google Web Designer is a professional HTML5 advertising and web content creation tool developed by Google Inc. It supports both visual design and code editing. Google Web Designer has a security vulnerability, which stems from the Zip Slip vulnerability. This vulnerability may lead to arbitrary...
PT-2026-22339
Name of the Vulnerable Software and Affected Versions Google Web Designer affected versions not specified Description The software is susceptible to a zip slip vulnerability, which can lead to arbitrary file write and potential privilege escalation. A zip slip vulnerability occurs when a program...
CVE-2025-1079
Client RCE on macOS and Linux via improper symbolic link resolution in Google Web Designer's preview feature...
EUVD-2025-14276
Malicious code in bioql PyPI...
EUVD-2025-18165
Malicious code in bioql PyPI...
CVE-2025-28971
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CWD Web Designer Easy Elements Hider easy-elements-hider allows Stored XSS.This issue affects Easy Elements Hider: from n/a through = 2.0...
CVE-2025-28971
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CWD Web Designer Easy Elements Hider easy-elements-hider allows Stored XSS.This issue affects Easy Elements Hider: from n/a through = 2.0...
CVE-2025-28971
CVE-2025-28971 concerns the WordPress plugin Easy Elements Hider, where stored XSS is possible due to improper neutralization of input during web page generation. Affected: Easy Elements Hider versions up to 2.0 (no public fixed version details provided in the supplied documents). Impact is store...
PT-2025-27881 · Cwd · Cwd Web Designer Easy Elements Hider
Name of the Vulnerable Software and Affected Versions: CWD Web Designer Easy Elements Hider versions 2.0 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting XSS. This means that an attacker can...
CVE-2025-4613
Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on Windows allows attacker to achieve remote code execution by tricking users into downloading a malicious ad template...
CVE-2025-4613
Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on Windows allows attacker to achieve remote code execution by tricking users into downloading a malicious ad template...
CVE-2025-4613
Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on Windows allows attacker to achieve remote code execution by tricking users into downloading a malicious ad template...
CVE-2025-4613
CVE-2025-4613 : Google Web Designer on Windows with versions prior to 16.3.0.0407 suffers path traversal in template handling, enabling remote code execution when a user is tricked into downloading a malicious ad template. The CVE is supported by multiple connected sources confirming the same roo...