Lucene search
+L

89 matches found

CNVD
CNVD
added 2025/12/03 12:0 a.m.3 views

Socomec DIRIS Digiware M-70 Plaintext Transfer Vulnerability

The Socomec DIRIS Digiware M-70 is a communication gateway device that serves as an access point for the DIRIS Digiware system, which combines 24VDC power and communication functions in a single unit. The Socomec DIRIS Digiware M-70 suffers from a plaintext transmission vulnerability that...

7.5CVSS6.3AI score0.00825EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/01 12:0 a.m.5 views

PT-2025-48470

Name of the Vulnerable Software and Affected Versions Socomec DIRIS Digiware M-70 version 1.6.9 Description A cleartext transmission issue exists in the WEBVIEW-M functionality. A crafted HTTP request can result in sensitive information being disclosed. An attacker can capture network traffic to...

5.9CVSS6.3AI score0.00825EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.6 views

Malicious code in gamma-old-visualize-web-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c85b8c83f11198dd37909d77ea949f07b7f4f84ed769cfb14f898b385924bd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.2 views

EUVD-2025-178789

Malicious code in gamma-old-visualize-web-view npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-1948

Malware in sbrugna...

7.5CVSS7.6AI score0.02763EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-31878

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01485EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/08/16 8:11 a.m.7 views

CVE-2025-27388

Loading arbitrary external URLs through WebView components introduces malicious JS code that can steal arbitrary user tokens...

8.3CVSS7.6AI score0.00385EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 7:15 a.m.34 views

CVE-2025-27388

CVE-2025-27388 describes an issue where loading arbitrary external URLs through WebView components can inject malicious JavaScript to steal user tokens. The initial entry notes high impact (CVSS 4.0 base score 8.3) with NETWORK attack vector and high confidentiality impact. Connected documents co...

8.3CVSS7.5AI score0.00385EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:28 a.m.7 views

CVE-2024-40433

Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate privileges via the web-view component...

8.8CVSS7.1AI score0.01175EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:10 a.m.4 views

CVE-2019-1010205

LINAGORA hublin latest commit 72ead897082403126bf8df9264e70f0a9de247ff is affected by: Directory Traversal. The impact is: The vulnerability allows an attacker to access any file with a fixed extension on the server. The component is: A web-view renderer; details here:...

7.5CVSS6.8AI score0.02763EPSS
Exploits0References1
OSV
OSV
added 2025/04/11 5:15 p.m.1 views

DEBIAN-CVE-2025-32072

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43...

6.9CVSS5.2AI score0.00441EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/03 12:0 a.m.3 views

SAMSUNG Gaming Hub 安全漏洞

SAMSUNG Gaming Hub is a gaming center application from Samsung South Korea. A security vulnerability exists in SAMSUNG Gaming Hub versions prior to 7.1.03.7, which stems from insufficient URL authenticity validation and allows remote attackers to enable JavaScript in its web view...

6.5CVSS6.7AI score0.00446EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/28 12:0 a.m.10 views

PT-2024-29633 · Rakuten · Rakuten Ichiba App For Android +1

Name of the Vulnerable Software and Affected Versions: Rakuten Ichiba App for Android versions 12.4.0 and earlier Rakuten Ichiba App for iOS versions 11.7.0 and earlier Description: The issue concerns improper authorization in the handler for the custom URL scheme, allowing an arbitrary site to b...

6.1CVSS6.8AI score0.003EPSS
Exploits0References10
CNVD
CNVD
added 2024/07/31 12:0 a.m.41 views

Unspecified Vulnerability in Tencent WeChat (CNVD-2025-06512)

Tencent WeChat 微信 is an online social networking application from the Chinese company Tencent. The program supports sending voice messages, videos, pictures, and text, among other things. An unspecified vulnerability exists in Tencent WeChat. An attacker can exploit the vulnerability to elevate...

8.8CVSS6.8AI score0.01175EPSS
Exploits1References1
NVD
NVD
added 2024/07/26 10:15 p.m.26 views

CVE-2024-40433

Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate privileges via the web-view component...

8.8CVSS0.01175EPSS
Exploits1References1
OSV
OSV
added 2024/07/26 10:15 p.m.7 views

CVE-2024-40433

Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate privileges via the web-view component...

8.8CVSS5.8AI score0.01175EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/07/26 12:0 a.m.13 views

CVE-2024-40433

Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate privileges via the web-view component...

7.3AI score0.01175EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/07/26 12:0 a.m.5 views

Tencent WeChat 安全漏洞

Tencent WeChat 微信 is an online social networking application from the Chinese company Tencent. The program supports sending voice messages, videos, pictures, and text, among other things. An unspecified vulnerability exists in Tencent WeChat. An attacker can exploit the vulnerability to elevate...

8.8CVSS6.9AI score0.01175EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/07/26 12:0 a.m.24 views

CVE-2024-40433

Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate privileges via the web-view component...

0.01175EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/07/26 12:0 a.m.8 views

PT-2024-28846 · Tencent · Tencent Wechat

Name of the Vulnerable Software and Affected Versions: Tencent WeChat version 8.0.37 Description: The issue allows an attacker to escalate privileges via the web-view component. Recommendations: For version 8.0.37, at the moment, there is no information about a newer version that contains a fix f...

8.8CVSS7.1AI score0.01175EPSS
Exploits1References4
Rows per page
Query Builder