|
1741
|
7.5 |
HIGH
Network
|
-
|
-
|
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specia…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-5201
|
2026-04-14 21:16 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1742
|
7.5 |
HIGH
Network
|
-
|
-
|
Se encontró un fallo en la biblioteca gdk-pixbuf. Esta vulnerabilidad de desbordamiento de búfer basado en montículo ocurre en el cargador de imágenes JPEG debido a una validación incorrecta del recu…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-5201
|
2026-04-14 21:16 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1743
|
5.4 |
MEDIUM
Network
|
microsoft
|
edge
|
User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
|
CWE-451
User Interface (UI) Misrepresentation of Critical Information
|
CVE-2026-33119
|
2026-04-14 20:57 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1744
|
2.7 |
LOW
Network
|
janobe
|
online_reviewer_system
|
Sourcecodester Online Reviewer System v1.0 is vulnerale to SQL Injection in the file /system/system/admins/assessments/examproper/exam-update.php.
|
CWE-89
SQL Injection
|
CVE-2026-36919
|
2026-04-14 20:52 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1745
|
2.7 |
LOW
Network
|
janobe
|
online_reviewer_system
|
Sourcecodester Online Reviewer System v1.0 is vulnerable to SQL Injection in the file /system/system/admins/assessments/examproper/questions-view.php.
|
CWE-89
SQL Injection
|
CVE-2026-36920
|
2026-04-14 20:51 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1746
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. (Chromium security sev…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2026-5889
|
2026-04-14 20:45 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1747
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page…
|
CWE-451
User Interface (UI) Misrepresentation of Critical Information
|
CVE-2026-5891
|
2026-04-14 20:44 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1748
|
8.2 |
HIGH
Network
|
gnu
redhat
|
gnutls
openshift_container_platform
enterprise_linux
|
A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an …
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2025-32990
|
2026-04-14 20:16 |
2025-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1749
|
8.2 |
HIGH
Network
|
gnu
redhat
|
gnutls
openshift_container_platform
enterprise_linux
|
Se detectó una falla de desbordamiento de búfer de pila (desviación de uno) en el software GnuTLS, en la lógica de análisis de plantillas de la utilidad certtool. Al leer ciertas configuraciones de u…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2025-32990
|
2026-04-14 20:16 |
2025-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1750
|
5.3 |
MEDIUM
Network
|
gnu
redhat
|
gnutls
openshift_container_platform
enterprise_linux
|
A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extension during X.509 certificate parsing. This flaw a…
|
CWE-295
Improper Certificate Validation
|
CVE-2025-32989
|
2026-04-14 20:16 |
2025-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
