74 matches found
CVE-2026-3061
Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...
GHSA-M9HV-QMQH-33QH EC-CUBE Cross-site request forgery (CSRF) vulnerability
Cross-site request forgery CSRF vulnerability in EC-CUBE 2 series 2.11.0 to 2.17.1 allows a remote attacker to hijack the authentication of Administrator and delete Administrator via a specially crafted web page...
Remote Code Execution (RCE)
chromium is vulnerable to remote code execution. The vulnerability exists due to a use after free in the v8 component. The vulnerabilities can be exploited if a user visits, or is redirected to, a specially crafted web page...
Design/Logic Flaw
Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. It finally leads to a file download and execution via access to crafted web page...
DEBIAN-CVE-2019-13751
Uninitialized data in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...
Microsoft Internet Explorer Memory Corruption (CVE-2017-11856)
A remote code execution vulnerability exists in Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...
Microsoft Internet Explorer Memory Corruption (CVE-2017-11855)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to the way Microsoft Internet Explorer handles objects in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...
Microsoft Edge Use After Free (CVE-2017-8652)
A use-after-free vulnerability exists in Microsoft Edge. The vulnerability is due to improper access of objects in memory. A remote attacker can exploit this vulnerability by enticing a victim to open a maliciously crafted web page...
Mozilla Firefox WebGL Integer Overflow (CVE-2017-5459)
A memory corruption vulnerability exists in WebGL components of Mozilla Firefox. The vulnerability is due to an integer overflow in Intersect function while calculating destination frame buffer width and height. A remote attacker could exploit this vulnerability by enticing a user to open a...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8496)
A type confusion vulnerability exists in Microsoft Edge. The vulnerability is due to a CAttribute object being confused for a CAttrArray object by the PrivateFindInl method. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...
Microsoft Internet Explorer Memory Corruption (CVE-2017-0202)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses objects in memory. A remote attacker can exploit this issue by enticing a user to open a specially crafted web-page with an...
Microsoft Internet Explorer Elevation of Privilege (MS17-006: CVE-2017-0154)
An elevation of privilege vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...
The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions policies.
The vulnerability of the Blink component in Google Chrome browser is related to numerical processing errors. Exploiting this vulnerability allows a malicious actor to bypass existing access restrictions by using a specially created HTML page...
Microsoft Scripting Engine Information Disclosure (MS16-119: CVE-2016-7189)
An information disclosure vulnerability exists in Microsoft Edge. This vulnerability is due to improper handling of objects in memory. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...
Microsoft Edge Memory Corruption (MS16-024: CVE-2016-0123)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0067)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Internet Explorer Use After Free Remote Code Execution (MS15-124: CVE-2015-6148)
A use after free vulnerability exists in Microsoft Internet Explorer. The vulnerability occurs when Internet Explorer attempts to retrieve the common ancestor for nodes that are already dead, resulting in dereferences to invalid pointers. A remote attacker can exploit this issue by enticing a...
Microsoft Internet Explorer Memory Corruption (MS15-124: CVE-2015-6152)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...
Microsoft Internet Explorer Memory Corruption (MS15-124: CVE-2015-6155)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...
Microsoft Internet Explorer Memory Corruption (MS15-124: CVE-2015-6159)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...