Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
man yue mo vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2019-13717
Incorrect security UI in full screen mode in Google Chrome before 78.0.3904.70 allowed a remote malicious user to hide security UI via a crafted HTML page.
Google Chrome
Opensuse Backports Sle 15.0
4.3
CVSSv3
CVE-2019-13718
Insufficient data validation in Omnibox in Google Chrome before 78.0.3904.70 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
Opensuse Backports Sle 15.0
4.3
CVSSv3
CVE-2019-13659
IDN spoofing in Omnibox in Google Chrome before 77.0.3865.75 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
4.3
CVSSv3
CVE-2019-13663
IDN spoofing in Omnibox in Google Chrome before 77.0.3865.75 allowed a remote malicious user to perform domain spoofing via IDN homographs via a crafted domain name.
Google Chrome
4.3
CVSSv3
CVE-2019-13667
Inappropriate implementation in Omnibox in Google Chrome on iOS before 77.0.3865.75 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
7.4
CVSSv3
CVE-2019-13668
Insufficient policy enforcement in developer tools in Google Chrome before 77.0.3865.75 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
4.3
CVSSv3
CVE-2019-13669
Incorrect data validation in navigation in Google Chrome before 77.0.3865.75 allowed a remote malicious user to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2019-13662
Insufficient policy enforcement in navigations in Google Chrome before 77.0.3865.75 allowed a remote malicious user to bypass content security policy via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2019-13720
Use after free in WebAudio in Google Chrome before 78.0.3904.87 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Opensuse Leap 15.1
2 Github repositories
4 Articles
9.8
CVSSv3
CVE-2018-8013
In Apache Batik 1.x prior to 1.10, when deserializing subclass of `AbstractDocument`, the class takes a string from the inputStream as the class name which then use it to call the no-arg constructor of the class. Fix was to check the class type before calling newInstance in deser...
Apache Batik
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Fusion Middleware Mapviewer 12.2.1.2
Oracle Enterprise Repository 12.1.3.0.0
Oracle Business Intelligence 11.1.1.9.0
Oracle Enterprise Repository 11.1.1.7.0
Oracle Business Intelligence 11.1.1.7.0
Oracle Retail Back Office 13.4
Oracle Retail Back Office 14.1
Oracle Retail Back Office 13.3
Oracle Business Intelligence 12.2.1.3.0
Oracle Communications Diameter Signaling Router
Oracle Retail Order Broker 5.1
Oracle Retail Order Broker 5.2
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
Oracle Insurance Calculation Engine 10.2.1
Oracle Insurance Calculation Engine 10.1.1
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »