Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple webkit vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2010-1126
The JavaScript implementation in WebKit allows remote malicious users to send selected keystrokes to a form field in a hidden frame, instead of the intended form field in a visible frame, via certain calls to the focus method.
Apple Webkit
5
CVSSv2
CVE-2011-4692
WebKit, as used in Apple Safari 5.1.1 and previous versions and Google Chrome 15 and previous versions, does not prevent capture of data about the time required for image loading, which makes it easier for remote malicious users to determine whether an image exists in the browser...
Apple Webkit
Apple Safari
Google Chrome
4.3
CVSSv2
CVE-2010-0651
WebKit before r52784, as used in Google Chrome prior to 4.0.249.78 and Apple Safari prior to 4.0.5, permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote malicious...
Apple Webkit
Google Chrome
Apple Safari
2.6
CVSSv2
CVE-2017-7006
An issue exists in certain Apple products. iOS prior to 10.3.3 is affected. Safari prior to 10.1.2 is affected. tvOS prior to 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote malicious users to conduct a timing side-channel attack to bypas...
Apple Safari
Apple Tvos
Apple Iphone Os
Apple Webkit -
4.3
CVSSv2
CVE-2017-7038
A DOMParser XSS issue exists in certain Apple products. iOS prior to 10.3.3 is affected. Safari prior to 10.1.2 is affected. tvOS prior to 10.2.2 is affected. The issue involves the "WebKit" component.
Apple Safari
Apple Tvos
Apple Iphone Os
Apple Webkit -
1 Github repository
9.3
CVSSv2
CVE-2007-3944
Multiple heap-based buffer overflows in the Perl Compatible Regular Expressions (PCRE) library in the JavaScript engine in WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone prior to 1.0.1, allow remote malicious users to execute arbitrary code via certain JavaScript r...
Apple Webkit
Apple Iphone Os
Apple Safari 3.0
2.6
CVSSv2
CVE-2016-4583
WebKit in Apple iOS prior to 9.3.3, Safari prior to 9.1.2, and tvOS prior to 9.2.2 allows remote malicious users to bypass the Same Origin Policy and obtain image date from an unintended web site via a timing attack involving an SVG document.
Apple Webkit -
Webkitgtk Webkitgtk\\+
7.1
CVSSv2
CVE-2016-4592
WebKit in Apple iOS prior to 9.3.3, Safari prior to 9.1.2, and tvOS prior to 9.2.2 allows remote malicious users to cause a denial of service (memory consumption) via a crafted web site.
Apple Webkit -
Webkitgtk Webkitgtk\\+
6.8
CVSSv2
CVE-2017-13783
An issue exists in certain Apple products. iOS prior to 11.1 is affected. Safari prior to 11.0.1 is affected. iCloud prior to 7.1 on Windows is affected. iTunes prior to 12.7.1 on Windows is affected. tvOS prior to 11.1 is affected. The issue involves the "WebKit" compo...
Apple Safari
Apple Iphone Os
Apple Tvos
Apple Icloud
Apple Itunes
Apple Webkit -
1 EDB exploit
6.8
CVSSv2
CVE-2017-13784
An issue exists in certain Apple products. iOS prior to 11.1 is affected. Safari prior to 11.0.1 is affected. iCloud prior to 7.1 on Windows is affected. iTunes prior to 12.7.1 on Windows is affected. tvOS prior to 11.1 is affected. The issue involves the "WebKit" compo...
Apple Tvos
Apple Safari
Apple Iphone Os
Apple Webkit -
Apple Icloud
Apple Itunes
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »