Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ...Result(s) : 85986

Alerts Feed Alerts

DateNameCategoriesDetail
6.82017-04-24CVE-2017-5034cve A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for Linux and Windows allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file.
4.32017-04-24CVE-2017-5033cve Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android failed to correctly propagate CSP restrictions to local scheme pages, whic...
6.82017-04-24CVE-2017-5032cve PDFium in Google Chrome prior to 57.0.2987.98 for Windows could be made to increment off the end of a buffer, which allowed a remote attacker to potentially exploit heap corrupt...
6.82017-04-24CVE-2017-5031cve A use after free in ANGLE in Google Chrome prior to 57.0.2987.98 for Windows allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
6.82017-04-24CVE-2017-5030cve Incorrect handling of complex species in V8 in Google Chrome prior to 57.0.2987.98 for Linux, Windows, and Mac and 57.0.2987.108 for Android allowed a remote attacker to execute...
6.82017-04-24CVE-2017-5029cve The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Androi...
N/A2017-04-24CVE-2016-6915cve Stack-based buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5.
7.52017-04-24CVE-2017-8105cve FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c.
52017-04-24CVE-2017-8104cve In MyBB before 1.8.11, the smilie module allows Directory Traversal via the pathfolder parameter.
4.32017-04-24CVE-2017-8103cve In MyBB before 1.8.11, the Email MyCode component allows XSS, as demonstrated by an onmouseover event.
3.52017-04-24CVE-2017-8102cve Stored XSS in Serendipity v2.1-rc1 allows an attacker to steal an admin's cookie and other information by composing a new entry as an editor user. This is related to lack o...
6.82017-04-24CVE-2017-8101cve There is CSRF in Serendipity 2.0.5, allowing attackers to install any themes via a GET request.
4.32017-04-24CVE-2017-8100cve There is CSRF in the CopySafe Web Protection plugin before 2.6 for WordPress, allowing attackers to change plugin settings.
5.82017-04-24CVE-2017-8099cve There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request.
N/A2017-04-24CVE-2017-8098cve e107 2.1.4 is vulnerable to cross-site request forgery in plugin-installing, meta-changing, and settings-changing. A malicious web page can use forged requests to make e107 down...
4.32017-04-24CVE-2017-7723cve XSS exists in Easy WP SMTP (before 1.2.5), a WordPress Plugin, via the e-mail subject or body.
4.32017-04-24CVE-2017-5191cve An XSS vulnerability on the /NAGErrors URI in NetIQ Access Manager 4.2 and 4.3 exists because Access Gateway Error pages do not validate the HTTP Referer header.
N/A2017-04-24CVE-2017-3626cve Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Java Server Faces). The supported version that is affected is 3.1.2. Difficult ...
N/A2017-04-24CVE-2017-3625cve Vulnerability in the Oracle WebCenter Content component of Oracle Fusion Middleware (subcomponent: Content Server). Supported versions that are affected are 11.1.1.7, 11.1.1.9, ...
N/A2017-04-24CVE-2017-3623cve Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel RPC). For supported versions that are affected see note. Easily "exploitable" v...
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ...Result(s) : 85986