Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

53346 matches found

NVD
NVDadded 2026/06/04 11:17 p.m.4 views

CVE-2026-11020

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

6.5CVSS0.00215EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.25 views

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

0.00228EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.4 views

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

5.8AI score0.00228EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

5.5AI score0.00228EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.7 views

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00228EPSS
Exploits0
CVE
CVEadded 2026/06/04 11:5 p.m.11 views

CVE-2026-11196

CVE-2026-11196: Type confusion in XML handling in Google Chrome prior to 149.0.7827.53. The issue originates in Chrome/Chromium’s XML processing and could allow a remote attacker to read potentially sensitive information from process memory via a crafted XML file. Impact is labeled Medium; confid...

6.5CVSS5.8AI score0.00228EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/06/04 11:5 p.m.10 views

CVE-2026-11169

The CVE-2026-11169 issue affects Google Chrome (Chromium-based) and is described as an inappropriate XML implementation that enables UXSS via a crafted XML file. Affected software is Chrome prior to version 149.0.7827.53. The underlying cause is an improper XML handling path within Chrome/Chromiu...

8.1CVSS6AI score0.00211EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11169

Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted XML file. Chromium security severity: Medium...

5.6AI score0.00211EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11169

Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted XML file. Chromium security severity: Medium...

8.1CVSS5.6AI score0.00211EPSS
Exploits0
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.27 views

CVE-2026-11150

Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

0.00159EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:5 p.m.9 views

CVE-2026-11150

Summary: CVE-2026-11150 is an UXSS (arbitrary script/HTML) in Chrome due to an inappropriate XML implementation. Affected product: Google Chrome (Chromium base); vulnerable component: XML handling in the browser; root cause: improper XML processing leads to script/HTML injection via a crafted HTM...

6.1CVSS6AI score0.00159EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.4 views

CVE-2026-11150

Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

6AI score0.00159EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11150

Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

5.6AI score0.00159EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:4 p.m.14 views

CVE-2026-11035

CVE-2026-11035 describes an inappropriate implementation in Google Chrome for Android’s Custom Tabs prior to version 149.0.7827.53, enabling a local attacker to escalate privileges via a crafted XML file. The underlying issue is in the Custom Tabs integration, leading to total impact on confident...

7.3CVSS5.8AI score0.00079EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:4 p.m.25 views

CVE-2026-11035

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

0.00079EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.5 views

CVE-2026-11035

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

7.3CVSS5.4AI score0.00079EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.4 views

CVE-2026-11020

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

5.5AI score0.00215EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.6 views

CVE-2026-11020

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00215EPSS
Exploits0
OSV
OSVadded 2026/06/04 7:42 p.m.7 views

ROOT-APP-NPM-CVE-2026-25128 CVE-2026-25128 in @rootio/fast-xml-parser - Patched by Root

Root has patched CVE-2026-25128 in the @rootio/fast-xml-parser package for Root:npm. Multiple fixed versions available...

7.5CVSS5.4AI score0.00559EPSS
Exploits1
RedHat Linux
RedHat Linuxadded 2026/06/04 1:56 p.m.5 views

Important: Red Hat Security Advisory: expat security update

An update for expat is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS5.8AI score0.00495EPSS
Exploits1References2
Rows per page
Query Builder