3 matches found
CVE-2025-15051
IBM QRadar SIEM 7.5.0 through 7.5.0 Update Package 14 is vulnerable to cross-site scripting in the Web UI, allowing embedded JavaScript to alter functionality. The connected IBM security bulletin specifies CVE-2025-15051, with CWE-79, CVSS 3.1 base score 5.4 (UI: REQUIRED, AV:N, AC:L, PR:L; C/L/I...
CVE-2025-4979 Insufficient Granularity of Access Control in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1. An attacker may be able to reveal masked or hidden CI variables that they did not author in the WebUI, by simply creating their own variable and observing the HTTP...
The vulnerability of the Google Chrome browser’s WebUI user interface allows a hacker to execute arbitrary code.
The vulnerability of the WebUI user interface of Google Chrome is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...