87 matches found
webkitgtk: A website may be able to access sensor information without user consent
A flaw was found in WebKitGTK. A malicious website can obtain access to sensor information without user consent due to improper handling of caches...
webkitgtk: A website may be able to access sensor information without user consent
A flaw was found in WebKitGTK. A malicious website can obtain access to sensor information without user consent due to improper handling of caches...
webkitgtk: A website may be able to access sensor information without user consent
A flaw was found in WebKitGTK. A malicious website can obtain access to sensor information without user consent due to improper handling of caches...
EUVD-2020-26784
Malware in sbrugna...
EUVD-2023-43230
Malicious code in bioql PyPI...
EUVD-2022-53133
Malicious code in bioql PyPI...
EUVD-2021-8189
Malicious code in bioql PyPI...
EUVD-2024-20892
Malicious code in bioql PyPI...
EUVD-2024-52242
Malicious code in bioql PyPI...
EUVD-2021-8142
Malicious code in bioql PyPI...
EUVD-2022-28233
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-43356
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was addressed with improved handling of caches. This issue is fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS...
SUSE CVE-2025-43356
The issue was addressed with improved handling of caches. This issue is fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. A website may be able to access sensor information without user consent...
DEBIAN-CVE-2025-43356
The issue was addressed with improved handling of caches. This issue is fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. A website may be able to access sensor information without user consent...
UBUNTU-CVE-2025-43356
The issue was addressed with improved handling of caches. This issue is fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, watchOS 26. A website may be able to access sensor information without user consent...
CVE-2024-25559
URL spoofing vulnerability exists in a-blog cms Ver.3.1.0 to Ver.3.1.8. If an attacker sends a specially crafted request, the administrator of the product may be forced to access an arbitrary website when clicking a link in the audit log...
CVE-2024-52870
Teradata Vantage Editor 1.0.1 is mostly intended for SQL database access and docs.teradata.com access, but provides unintended functionality including Chromium Developer Tools that can result in a client user accessing arbitrary remote websites...
CVE-2023-39507
Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website...
CVE-2025-24361
The CVE-2025-24361 issue affects Nuxt (Vue.js) dev-server workflow: when using webpack (3.0.0–3.15.12) or rspack (3.12.2–3.152) builders, loading a malicious site can trigger source-code exposure. Attacker can use Function::toString on window.webpackChunknuxt_app values to reveal the Nuxt source....
CVE-2024-52870
CVE-2024-52870 concerns Teradata Vantage Editor 1.0.1, which is primarily a SQL editor but exposes unintended functionality, including Chromium Developer Tools, that can let a client user access arbitrary remote websites. The Red Hat/NVD entries confirm the affected product and behavior; the issu...