Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
feng feng vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2019-5861
Insufficient data validation in Blink in Google Chrome before 76.0.3809.87 allowed a remote malicious user to bypass anti-clickjacking policy via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2019-5862
Insufficient data validation in AppCache in Google Chrome before 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Google Chrome
4.3
CVSSv3
CVE-2019-5864
Insufficient data validation in CORS in Google Chrome before 76.0.3809.87 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension.
Google Chrome
6.5
CVSSv3
CVE-2019-5865
Insufficient policy enforcement in navigations in Google Chrome before 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2019-5830
Insufficient policy enforcement in CORS in Google Chrome before 75.0.3770.80 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
Debian Debian Linux 10.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
6.5
CVSSv3
CVE-2019-5837
Resource size information leakage in Blink in Google Chrome before 75.0.3770.80 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
Debian Debian Linux 10.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
4.3
CVSSv3
CVE-2019-5839
Excessive data validation in URL parser in Google Chrome before 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL.
Google Chrome
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
Debian Debian Linux 10.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
4.3
CVSSv3
CVE-2019-5840
Incorrect security UI in popup blocker in Google Chrome on iOS before 75.0.3770.80 allowed a remote malicious user to bypass navigation restrictions via a crafted HTML page.
Google Chrome
Opensuse Leap 42.3
Debian Debian Linux 10.0
Opensuse Leap 15.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle-15
6.5
CVSSv3
CVE-2019-5848
Incorrect font handling in autofill in Google Chrome before 75.0.3770.142 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page.
Google Chrome
9.6
CVSSv3
CVE-2019-5850
Use after free in offline mode in Google Chrome before 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »