Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2016-6111

Malware in sbrugna...

6.5CVSS7.9AI score0.00682EPSS
Exploits0References17
NVD
NVDadded 2019/06/24 7:15 p.m.8 views

CVE-2019-12880

BCN Quark Quarking Password Manager 3.1.84 suffers from a clickjacking vulnerability caused by allowing within webaccessibleresources. An attacker can take advantage of this vulnerability and cause significant harm...

4.3CVSS4.6AI score0.00233EPSS
Exploits0References3
Prion
Prionadded 2019/06/24 7:15 p.m.8 views

Design/Logic Flaw

BCN Quark Quarking Password Manager 3.1.84 suffers from a clickjacking vulnerability caused by allowing within webaccessibleresources. An attacker can take advantage of this vulnerability and cause significant harm...

4.3CVSS4.7AI score0.00233EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2019/06/24 6:39 p.m.50 views

CVE-2019-12880

CVE-2019-12880 affects BCN Quark Quarking Password Manager (v3.1.84). The issue is a clickjacking vulnerability caused by allowing a wildcard (*) in web_accessible_resources, enabling a malicious page to load the password manager UI in a framed context. This could allow attackers to trick users i...

4.3CVSS4.6AI score0.00233EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2016/09/11 10:59 a.m.14 views

Code injection

The AllowCrossRendererResourceLoad function in extensions/browser/urlrequestutil.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use an extension's manifest.json webaccessibleresources field for restrictions on IFRAME elements, which...

4.3CVSS6AI score0.00682EPSS
Exploits0References12Affected Software2
CVE
CVEadded 2016/09/11 10:0 a.m.83 views

CVE-2016-5160

The CVE-2016-5160 entry concerns Google Chrome/Chromium where the AllowCrossRendererResourceLoad function in extensions/browser/url_request_util.cc does not properly enforce a manifest.json web_accessible_resources restriction on IFRAMEs, enabling clickjacking schemes and user setting changes via...

6.5CVSS6.7AI score0.00682EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVEadded 2016/09/11 10:0 a.m.29 views

CVE-2016-5160

Removed by vendor...

6.5CVSS8.1AI score0.00682EPSS
Exploits0
CVE
CVEadded 2016/09/11 10:0 a.m.86 views

CVE-2016-5162

The CVE-2016-5162 entry describes a Chrome vulnerability in the AllowCrossRendererResourceLoad function (extensions/browser/url_request_util.cc) where the web_accessible_resources manifest field was not correctly restricting IFRAME usage. Affects Google Chrome prior to 53.0.2785.89 (Windows/OS X)...

6.5CVSS6.7AI score0.00682EPSS
Exploits0References12Affected Software1
RedhatCVE
RedhatCVEadded 2016/09/01 8:19 a.m.28 views

CVE-2016-5160

The AllowCrossRendererResourceLoad function in extensions/browser/urlrequestutil.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use an extension's manifest.json webaccessibleresources field for restrictions on IFRAME elements, which...

6.5CVSS4.8AI score0.00682EPSS
Exploits0References2
Rows per page
Query Builder