Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
david morgan vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-21123
Insufficient data validation in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
8.1
CVSSv3
CVE-2021-21125
Insufficient policy enforcement in File System API in Google Chrome on Windows before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21126
Insufficient policy enforcement in extensions in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass site isolation via a crafted Chrome Extension.
Google Chrome
Microsoft Edge Chromium
8.8
CVSSv3
CVE-2021-21127
Insufficient policy enforcement in extensions in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass content security policy via a crafted Chrome Extension.
Google Chrome
Microsoft Edge Chromium
8.8
CVSSv3
CVE-2021-21128
Heap buffer overflow in Blink in Google Chrome before 88.0.4324.96 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21129
Insufficient policy enforcement in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21130
Insufficient policy enforcement in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21131
Insufficient policy enforcement in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
9.6
CVSSv3
CVE-2021-21132
Inappropriate implementation in DevTools in Google Chrome before 88.0.4324.96 allowed a remote malicious user to potentially perform a sandbox escape via a crafted Chrome Extension.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21133
Insufficient policy enforcement in Downloads in Google Chrome before 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »