|
1691
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
|
CWE-472
External Control of Assumed-Immutable Web Parameter
|
CVE-2026-5910
|
2026-04-14 23:44 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1692
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10_1507
windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_21h2
windows_11_22h2
windows_11_23h2
windows_server_2008
windows_server_2012
w…
|
Windows Common Log File System Driver Elevation of Privilege Vulnerability
|
CWE-125
Out-of-bounds Read
|
CVE-2023-36424
|
2026-04-14 23:44 |
2023-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1693
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10_1507
windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_21h2
windows_11_22h2
windows_11_23h2
windows_server_2008
windows_server_2012
w…
|
Vulnerabilidad de elevación de privilegios del controlador del sistema de archivos de registro común de Windows.
|
CWE-125
Out-of-bounds Read
|
CVE-2023-36424
|
2026-04-14 23:44 |
2023-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1694
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Policy bypass in ServiceWorkers in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)
|
CWE-693
Protection Mechanism Failure
|
CVE-2026-5911
|
2026-04-14 23:44 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1695
|
8.8 |
HIGH
Network
|
microsoft
|
exchange_server
|
Microsoft Exchange Server Remote Code Execution Vulnerability
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2023-21529
|
2026-04-14 23:44 |
2023-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1696
|
7.8 |
HIGH
Local
|
microsoft
|
windows_11_24h2
windows_11_25h2
windows_server_2025
|
Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally.
|
CWE-59
Link Following
|
CVE-2025-60710
|
2026-04-14 23:44 |
2025-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1697
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low)
|
CWE-472
External Control of Assumed-Immutable Web Parameter
|
CVE-2026-5912
|
2026-04-14 23:44 |
2026-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1698
|
6.1 |
MEDIUM
Network
|
churchcrm
|
churchcrm
|
ChurchCRM is an open-source church management system. Prior to 7.1.0, an XSS vulnerability allows attacker-supplied input sent via a the EName and EDesc parameters in EditEventAttendees.php to be ren…
|
CWE-79
CWE-80
Cross-site Scripting
Basic XSS
|
CVE-2026-39941
|
2026-04-14 23:44 |
2026-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1699
|
4.3 |
MEDIUM
Network
|
mediawiki
|
mediawiki
|
Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Import/ImportableOldRevisionImporter.Php.
This issue affects MediaWiki: from * before 1.…
|
NVD-CWE-noinfo
|
CVE-2025-67476
|
2026-04-14 23:43 |
2026-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1700
|
4.3 |
MEDIUM
Network
|
mediawiki
|
mediawiki
|
Vulnerabilidad en Wikimedia Foundation MediaWiki. Esta vulnerabilidad está asociada con archivos de programa includes/Import/ImportableOldRevisionImporter.PHP.
Este problema afecta a MediaWiki: desd…
|
NVD-CWE-noinfo
|
CVE-2025-67476
|
2026-04-14 23:43 |
2026-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
