14 matches found
UBUNTU-CVE-2026-23928
The Item history widget in Zabbix 7.0+ or the Plain text widget in Zabbix 6.0 can execute injected JavaScript when HTML display is enabled. This can allow an attacker to perform unauthorized actions depending on which user opens a dashboard containing these widgets. The malicious JavaScript would...
[SECURITY] Fedora 44 Update: kddockwidgets-2.4.0-7.fc44
Qt dock widget library written by KDAB, suitable for replacing QDockWidget and implementing advanced functionalities missing in Qt...
UBUNTU-CVE-2026-4712
Information disclosure in the Widget: Cocoa component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
[SECURITY] Fedora 42 Update: kddockwidgets-1.7.0-29.fc42
Qt dock widget library written by KDAB, suitable for replacing QDockWidget and implementing advanced functionalities missing in Qt...
EUVD-2007-6498
Malware in sbrugna...
CVE-2024-51669
Cross-Site Request Forgery CSRF vulnerability in Vivwebs Dynamic Widgets.This issue affects Dynamic Widgets: from n/a through 1.6.4...
SCOM console crashes when opening widget personalization dialog
Challenge When opening the Personalization dialog for any State View widget, the widget appears empty, and the Operations Manager Console crashes Cause There is a specific new widget declaration which can cause issues while loading other widgets. Solution Download Veeam Widget Library MP 7.0.0.18...
CVE-2009-4052
Multiple cross-site scripting XSS vulnerabilities in the JSF Widget Library Runtime in IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 th...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the JSF Widget Library Runtime in IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 th...
CVE-2009-4052
Multiple cross-site scripting XSS vulnerabilities in the JSF Widget Library Runtime in IBM Rational Application Developer for WebSphere Software before 7.0.0.10 and Rational Software Architect before 7.0.0.10 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 th...
Double free
Double free vulnerability in the Widget Library libxfcegui4 in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."...
CVE-2007-6532
Double free vulnerability in the Widget Library libxfcegui4 in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."...
CVE-2007-6532
Double free vulnerability in the Widget Library libxfcegui4 in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."...
CVE-2007-6532
Double free vulnerability in the Widget Library libxfcegui4 in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."...