195539 matches found
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability caused by integer overflow in the GPU. This vulnerability could allow remote attackers to execute out-of-bound memory access through specially crafted HTML...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from race conditions in the GPU, which could allow remote attackers with access to the compromised renderer process to...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the use of reusing resources after they were released in the base code, which could allow remote attackers who ha...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from the incomplete initialization of the Dawn component, which could allow remote attackers to obtain sensitive information from...
Google Chrome 输入验证错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation errors. This vulnerability stemmed from insufficient input validation in the ANGLE component. A remote attacker could exploit this vulnerability...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by an integer overflow issue in the Skia component. A remote attacker could exploit this vulnerability through a specially crafted HTML pag...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open-source web browser developed by the Mozilla Foundation in the United States. Versions of Mozilla Firefox prior to 151.0.3 contained a security vulnerability, which was caused by a compilation error in the JavaScript Engine’s JIT component...
itsourcecode Fees Management System 代码注入漏洞
itsourcecode Fees Management System is an open-source charging management system developed by itsourcecode. Version 1.0 of the itsourcecode Fees Management System has a code injection vulnerability; this vulnerability stems from operations on the page parameters in the index.php file, which may...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability caused by an uninitialized use of the Skia component. This vulnerability could allow remote attackers to exploit the vulnerability through specially crafted...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a resource management vulnerability. This vulnerability stemmed from a problem with the reuse of resources after they were released by network components, which could allow remote attacker...
NVIDIA NVTabular 代码问题漏洞
NVIDIA NVTabular is a component within the deep learning recommendation system framework developed by NVIDIA Corporation. NVIDIA NVTabular has code-related vulnerabilities; these vulnerabilities stem from improper deserialization of untrusted data, which may lead to code execution, data tampering...
Google Chrome 竞争条件问题漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a vulnerability due to competition conditions in the Codecs component. This vulnerability could allow a remote attacker to achieve sandbox escape by using a specially crafted HTML pa...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of Platform Integration in the Windows version. This vulnerability could allow remote attackers to execute...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from an uninitialized use in the WebML component, which could allow remote attackers to obtain sensitive information from process...
WordPress plugin rognone 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
Google Chrome 输入验证错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability originated from improper implementations in the base component, and it could allow remote attackers who have compromised...
Google Chrome 输入验证错误漏洞
Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a vulnerability related to input validation, which stems from insufficient validation for unreliable inputs...
Google Chrome 代码注入漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a code injection vulnerability. This vulnerability stemmed from script injections in the Headless component, which could allow remote attackers to execute arbitrary code through specially...
Google Chrome 缓冲区错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a buffer overflow vulnerability, which was caused by improper implementation of GPU components. This vulnerability could allow remote attackers to exploit the system through speciall...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from an integer overflow in the DevTools component, which could allow remote attackers to execute arbitrary code in the sandbox...
WordPress plugin Google Plus One Bottom 跨站请求伪造漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by the American company Google. There is a security vulnerability in Google Chrome, which stems from improper implementation...
WordPress plugin Confidant 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability caused by integer overflow in Media components. This vulnerability could allow remote attackers to execute arbitrary code within a sandbox through malicious...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of the Enterprise component. This vulnerability could allow local attackers to gain elevated...
FIT2CLOUD CordysCRM 代码注入漏洞
FIT2CLOUD CordysCRM is a customer relationship management system developed by FIT2CLOUD Corporation. Versions of FIT2CLOUD CordysCRM 1.6.2 and earlier contain a code injection vulnerability. This vulnerability stems from an unknown function in the file...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the reuse of resources after Blink was released, which could allow remote attackers to execute arbitrary code...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by the American company Google. Google Chrome has a security vulnerability that stems from the reuse of objects after their release...
Google Chrome 输入验证错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability stemmed from insufficient validation of untrusted inputs by Chromoting, which could allow a remote attacker with access to t...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the reuse of the WebAuthentication component after it was released, which could allow remote attackers to exploit...
itsourcecode Fees Management System SQL注入漏洞
itsourcecode Fees Management System is an open-source charging management system developed by itsourcecode. Version 1.0 of the itsourcecode Fees Management System has a SQL injection vulnerability. This vulnerability arises from manipulating the parameter ID in the file /managepayment.php, which...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from WebXRs allowing objects to be reused after being released, which could enable remote attackers to execute arbitra...
Zyxel VMG4005-B50B 安全漏洞
The Zyxel VMG4005-B50B is a VDSL2/ADSL2+ broadband modem produced by the Chinese company Zyxel. The firmware version 5.13ABRL.5.4C0 and earlier contain security vulnerabilities. These vulnerabilities stem from a buffer overflow in the UPnP AddPortMapping command, which could allow adjacent...
Yandex Database 安全漏洞
Yandex Database is a distributed SQL database management system developed by the Russian company Yandex. Versions of Yandex Database prior to 25.3.1.25 contained security vulnerabilities. These vulnerabilities were caused by LDAP filter injection issues, which could allow remote attackers to bypa...
Prefect 安全漏洞
Prefect is a workflow orchestration tool developed by Prefect OpenSource, enabling developers to build, monitor data pipelines, and respond to changes in those pipelines. Version 3.6.19 of Prefect contains a security vulnerability. This vulnerability stems from improper handling of URL paths for...
WordPress plugin Cookiteer 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by the American company Google. Google Chrome has a resource management vulnerability that stems from the reusing of resources after they are released...
NiceGUI 信息泄露漏洞
NiceGUI is an easy-to-use, Python-based UI framework developed under the open source license. Versions of NiceGUI prior to 3.12.0 contained a vulnerability related to information leakage. This vulnerability stemmed from the fact that the ui.restructuredtext function did not disable the file...
Vivotek FD8136 安全漏洞
Vivotek FD8136 is a hemispherical network camera produced by the Chinese company Vivotek. The Vivotek FD8136 FD8136-VVTK-0300a version contains a security vulnerability. This vulnerability stems from a stack buffer overflow in the exportlanguage.cgi binary file. The Content-Length value is direct...
Open5GS 竞争条件问题漏洞
Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.6 and earlier contained a race condition vulnerability. This vulnerability stemmed from a issue with the gmmstatesecuritymode function in theNGA...
Dräger Core和Dräger M540 Converter Service 资源管理错误漏洞
Both the Dräger Core and Dräger M540 Converter Service are products of the German company Dräger. The Dräger Core is a medical device remote access and control platform. The Dräger M540 Converter Service is a medical device data conversion service. Versions 1.0.5 of Dräger Core and 1.0.9 of Dräge...
Memos 安全漏洞
Memos is an open-source memo center with knowledge management and social features, hosted on a server. Version 0.26.0 of Memos contains a security vulnerability. This vulnerability stems from cross-site scripting vulnerabilities in the SANITIZESCHEMA,Memo Rendering Component, and Public/Private...
Northern.tech CFEngine Enterprise 安全漏洞
Northern.tech CFEngine Enterprise is a multi-functional solution from Northern.tech company, designed for automatically performing daily tasks. There were security vulnerabilities in versions 3.24.3 to 3.24.4 and 3.27.0 to 3.27.1 of Northern.tech CFEngine Enterprise, which stemmed from cross-site...
Dräger Zeus IE和Dräger Zeus RS C500 安全漏洞
Both Dräger Zeus IE and Dräger Zeus RS C500 are intelligent anesthesia workstations produced by the German company Dräger. Both devices have security vulnerabilities; these vulnerabilities stem from local security issues, which may allow unauthorized individuals to manipulate the software’s...
OpenTelemetry eBPF Instrumentation 安全漏洞
OpenTelemetry eBPF Instrumentation is an open-source, eBPF-based lightweight telemetry data collection tool developed by OpenTelemetry. Versions of OpenTelemetry eBPF Instrumentation prior to 0.9.0 contained security vulnerabilities. These vulnerabilities stemmed from the BPF probe’s reexecution...
WordPress plugin ZeM STL 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
WordPress plugin Easy Cart 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
authentik 数据伪造问题漏洞
Authentik is an open-source identity provisioning application developed by Authentik. Versions of Authentik before 2025.12.5 and 2026.2.3 had a data manipulation vulnerability. This vulnerability stemmed from the SAML response processor not verifying the Conditions element in assertions, which...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of the Workers component. This vulnerability could allow remote attackers to bypass the same-origin policy throu...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. in the United States. Payments is one of the payment components included in Google Chrome. Blink is a browser rendering engine developed jointly by Google Inc. and Opera Software AB in Norway. V8 is an open-source JavaScript engine used in...