Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webkit vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-9951
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple Iphone Os
Apple Watchos
Apple Safari
Apple Tvos
Apple Ipados
Apple Icloud
Apple Itunes
Webkit Webkitgtk\\+
Debian Debian Linux 10.0
1 Article
5.3
CVSSv3
CVE-2021-42762
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit prior to 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem na...
Webkitgtk Webkitgtk
Wpewebkit Wpe Webkit
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 10.0
Debian Debian Linux 11.0
NA
CVE-2010-1388
WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6, and prior to 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assisted remote malicious users to read arbitrary files via a crafted...
Apple Webkit
Apple Safari
Apple Safari 4.0.3
Apple Safari 4.0.2
Apple Safari 4.0
Apple Safari 4.0.4
Apple Safari 4.0.1
Apple Safari 4.0.0b
NA
CVE-2010-1393
The Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, allows remote malicious users to discover sensitive URLs via an HREF attribute associated with a redire...
Apple Safari 4.0
Apple Safari 4.0.4
Apple Webkit
Apple Safari
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Safari 4.0.3
Apple Safari 4.0.2
NA
CVE-2010-1398
WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, does not properly perform ordered list insertions, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory corr...
Apple Safari 4.0.3
Apple Safari
Apple Safari 4.0.4
Apple Webkit
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 4.0.2
Apple Safari 4.0.1
NA
CVE-2010-1402
Double free vulnerability in WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors related ...
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 4.0.3
Apple Safari 4.0.2
Apple Safari 4.0.4
Apple Webkit
Apple Safari
NA
CVE-2010-1406
WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, sends an https URL in the Referer header of an http request in certain circumstances involving https to http redirection, which allows remote HTTP servers...
Apple Safari 4.0.3
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari
Apple Safari 4.0.4
Apple Webkit
NA
CVE-2010-1409
Incomplete blacklist vulnerability in WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, allows remote malicious users to trigger disclosure of data over IRC via vectors involving an IRC service port.
Apple Safari 4.0.3
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Webkit
Apple Safari
Apple Safari 4.0
Apple Safari 4.0.4
NA
CVE-2010-1410
WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via an SVG document with ne...
Apple Safari 4.0
Apple Safari 4.0.4
Apple Webkit
Apple Safari
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Safari 4.0.3
NA
CVE-2010-1414
Use-after-free vulnerability in WebKit in Apple Safari prior to 5.0 on Mac OS X 10.5 up to and including 10.6 and Windows, and prior to 4.1 on Mac OS X 10.4, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors relat...
Apple Webkit
Apple Safari
Apple Safari 4.0.3
Apple Safari 4.0.2
Apple Safari 4.0
Apple Safari 4.0.4
Apple Safari 4.0.1
Apple Safari 4.0.0b
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »