|
1681
|
7.0 |
HIGH
Local
|
drbuho
|
buhocleaner
|
BuhoCleaner contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via insecure functions.This issue affects BuhoCleaner: 1.15.2.
|
CWE-362
CWE-367
Race Condition
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-0924
|
2026-04-14 23:53 |
2026-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1682
|
7.0 |
HIGH
Local
|
drbuho
|
buhocleaner
|
BuhoCleaner contiene un servicio XPC inseguro que permite a usuarios locales y sin privilegios escalar sus privilegios a root a través de funciones inseguras. Este problema afecta a BuhoCleaner: 1.15…
|
CWE-362
CWE-367
Race Condition
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-0924
|
2026-04-14 23:53 |
2026-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1683
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Incorrect security UI in Permissions in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low)
|
CWE-451
User Interface (UI) Misrepresentation of Critical Information
|
CVE-2026-5905
|
2026-04-14 23:51 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1684
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Incorrect security UI in Omnibox in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium securit…
|
CWE-451
User Interface (UI) Misrepresentation of Critical Information
|
CVE-2026-5906
|
2026-04-14 23:51 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1685
|
4.3 |
MEDIUM
Network
|
mediawiki
|
checkuser
|
Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/GlobalContributions/GlobalContributionsPager.Php.
This issue affects CheckUser: from * before…
|
CWE-22
Path Traversal
|
CVE-2025-61658
|
2026-04-14 23:47 |
2026-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1686
|
4.3 |
MEDIUM
Network
|
mediawiki
|
checkuser
|
Vulnerabilidad en Wikimedia Foundation CheckUser. Esta vulnerabilidad está asociada con los archivos de programa src/GlobalContributions/GlobalContributionsPager.PHP.
Este problema afecta a CheckUse…
|
CWE-22
Path Traversal
|
CVE-2025-61658
|
2026-04-14 23:47 |
2026-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1687
|
8.1 |
HIGH
Network
|
google
|
chrome
|
Insufficient data validation in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted video file. (Chromium security severity: …
|
CWE-125
Out-of-bounds Read
|
CVE-2026-5907
|
2026-04-14 23:46 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1688
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
|
CWE-472
External Control of Assumed-Immutable Web Parameter
|
CVE-2026-5909
|
2026-04-14 23:45 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1689
|
7.8 |
HIGH
Local
|
adobe
|
acrobat_dc
acrobat_reader_dc
|
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation …
|
CWE-416
Use After Free
|
CVE-2020-9715
|
2026-04-14 23:45 |
2020-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1690
|
7.8 |
HIGH
Local
|
adobe
|
acrobat_dc
acrobat_reader_dc
|
Adobe Acrobat and Reader versiones 2020.009.20074 y anteriores, versiones 2020.001.30002, 2017.011.30171 y anteriores, y versiones 2015.006.30523 y anteriores, presentan una vulnerabilidad de uso de …
|
CWE-416
Use After Free
|
CVE-2020-9715
|
2026-04-14 23:45 |
2020-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
