|
272511
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the shared-timer implementation in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to cause a denial of service or possibly have unspecifi…
|
NVD-CWE-Other
|
CVE-2015-1299
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272512
|
- |
|
google
|
chrome
|
The RuntimeEventRouter::OnExtensionUninstalled function in extensions/browser/api/runtime/runtime_api.cc in Google Chrome before 45.0.2454.85 does not ensure that the setUninstallURL preference corre…
|
CWE-254
7PK - Security Features
|
CVE-2015-1298
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272513
|
- |
|
google
|
chrome
|
The WebRequest API implementation in extensions/browser/api/web_request/web_request_api.cc in Google Chrome before 45.0.2454.85 does not properly consider a request's source before accepting the requ…
|
CWE-254
7PK - Security Features
|
CVE-2015-1297
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272514
|
- |
|
google
|
chrome
|
The UnescapeURLWithAdjustmentsImpl implementation in net/base/escape.cc in Google Chrome before 45.0.2454.85 does not prevent display of Unicode LOCK characters in the omnibox, which makes it easier …
|
CWE-254
7PK - Security Features
|
CVE-2015-1296
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272515
|
- |
|
google
|
chrome
|
Multiple use-after-free vulnerabilities in the PrintWebViewHelper class in components/printing/renderer/print_web_view_helper.cc in Google Chrome before 45.0.2454.85 allow user-assisted remote attack…
|
NVD-CWE-Other
|
CVE-2015-1295
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272516
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the SkMatrix::invertNonIdentity function in core/SkMatrix.cpp in Skia, as used in Google Chrome before 45.0.2454.85, allows remote attackers to cause a denial of servi…
|
NVD-CWE-Other
|
CVE-2015-1294
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272517
|
- |
|
google
|
chrome
|
The DOM implementation in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1293
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272518
|
- |
|
google
|
chrome
|
The NavigatorServiceWorker::serviceWorker function in modules/serviceworkers/NavigatorServiceWorker.cpp in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to bypass the S…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1292
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272519
|
- |
|
google
|
chrome
|
The ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 45.0.2454.85, does not check whether a node is expected, which allows remote atta…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1291
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272520
|
- |
|
polycom
|
realpresence_cloudaxis_suite
|
Cross-site scripting (XSS) vulnerability in Polycom RealPresence CloudAXIS Suite before 1.7.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1516
|
2024-11-21 11:25 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
