|
1991
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Autofill in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: H…
|
CWE-416
Use After Free
|
CVE-2024-8639
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1992
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-843
Type Confusion
|
CVE-2024-8638
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1993
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Media Router in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit…
|
CWE-416
Use After Free
|
CVE-2024-8637
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1994
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8636
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1995
|
4.3 |
MEDIUM
Network
|
bricksbuilder
|
bricks
|
The Bricks theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.8.1. This is due to missing or incorrect nonce validation on the 'reset_settings' functi…
|
CWE-352
Origin Validation Error
|
CVE-2023-3409
|
2024-09-13 23:34 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1996
|
5.4 |
MEDIUM
Network
|
cyberchimps
|
responsive_blocks
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CyberChimps Responsive Blocks – WordPress Gutenberg Blocks allows Stored XSS.This issue af…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43335
|
2024-09-13 23:25 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1997
|
5.4 |
MEDIUM
Network
|
bdthemes
|
ultimate_store_kit
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in BdThemes Ultimate Store Kit Elementor Addons allows Stored XSS.This issue affects Ultimate…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43342
|
2024-09-13 23:11 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1998
|
- |
|
-
|
-
|
A vulnerability in the MSC800 allows an unauthenticated attacker to modify the product’s IP
address over Sopas ET.
This can lead to Denial of Service.
Users are recommended to upgrade both
MSC800 a…
|
-
|
CVE-2024-8751
|
2024-09-13 23:06 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1999
|
8.8 |
HIGH
Network
|
italtel
|
embrace
|
An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of an authenticated user inside GET requests. The query string for the URL could be saved in the browser…
|
NVD-CWE-noinfo
|
CVE-2024-31842
|
2024-09-13 23:05 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2000
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: qgroup: do not warn on record without old_roots populated
[BUG]
There are some reports from the mailing list that since v6…
|
NVD-CWE-noinfo
|
CVE-2023-52897
|
2024-09-13 22:52 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
