CVE-2022-1306

Inappropriate implementation in compositing in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Publication date: Mon, 25 Jul 2022 19:15:00 +0000

Cyber News related to CVE-2022-1306

CVE-2022-1306 - Inappropriate implementation in compositing in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. ...
1 year ago

CVE-2020-1265 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, ...
2 years ago

CVE-2020-1233 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1235, CVE-2020-1265, ...
2 years ago

CVE-2020-1304 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, ...
2 years ago

CVE-2020-1231 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1233, CVE-2020-1235, CVE-2020-1265, ...
2 years ago

CVE-2020-1235 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1265, ...
2 years ago

CVE-2020-1282 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, ...
2 years ago

CVE-2020-1306 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, ...
2 years ago

CVE-2020-1334 - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, ...
2 years ago

CVE-2013-1306 - Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer Use After Free Vulnerability," a different ...
5 years ago

CVE-1999-1306 - Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters. ...
15 years ago

CVE-2001-1306 - iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite. ...
15 years ago

CVE-2003-1306 - Microsoft URLScan 2.5, with the RemoveServerHeader option enabled, allows remote attackers to obtain sensitive information (server name and version) via an HTTP request that generates certain errors such as 400 "Bad Request," which leak the ...
15 years ago

CVE-2005-1306 - The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability." ...
15 years ago

CVE-2015-1306 - The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors. ...
8 years ago

CVE-2016-1306 - Multiple cross-site scripting (XSS) vulnerabilities in Cisco Fog Director 1.0(0) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux80466. ...
8 years ago

CVE-2002-1306 - Multiple buffer overflows in LISa on KDE 2.x for 2.1 and later, and KDE 3.x before 3.0.4, allow (1) local and possibly remote attackers to execute arbitrary code via the "lisa" daemon, and (2) remote attackers to execute arbitrary code via a ...
7 years ago

CVE-2007-1306 - Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference. Per: ...
6 years ago

CVE-2008-1306 - Multiple cross-site scripting (XSS) vulnerabilities in Savvy Content Manager (CM) allow remote attackers to inject arbitrary web script or HTML via the searchterms parameter to (1) searchresults.cfm, (2) search_results.cfm, and (3) ...
6 years ago

CVE-2010-1306 - Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details ...
6 years ago

CVE-2011-1306 - Unspecified vulnerability in the Scratchpad application in Google Chrome OS before R10 0.10.156.46 Beta has unknown impact and attack vectors. ...
6 years ago

CVE-2009-1306 - The jar: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not follow the Content-Disposition header of the inner URI, which allows remote attackers to conduct cross-site scripting (XSS) attacks and possibly other ...
5 years ago

CVE-2006-1306 - Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record ...
5 years ago

CVE-2018-1306 - The PortletV3AnnotatedDemo Multipart Portlet war file code provided in Apache Pluto version 3.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to restrict path information provided during a file upload. An ...
5 years ago

CVE-2004-1306 - Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a crafted .hlp file. ...
5 years ago

Latest Cyber News

CVE-2024-40605 - 9 hours ago
CVE-2024-40604 - 9 hours ago
CVE-2024-40603 - 9 hours ago
CVE-2024-40602 - 9 hours ago
CVE-2024-40601 - 9 hours ago
CVE-2024-40600 - 9 hours ago
CVE-2024-40599 - 9 hours ago
CVE-2024-40598 - 9 hours ago
CVE-2024-40596 - 9 hours ago
CVE-2024-40597 - 9 hours ago
CVE-2024-6095 - 15 hours ago
CVE-2024-37554 - 16 hours ago
CVE-2024-37553 - 17 hours ago
CVE-2024-37547 - 18 hours ago
CVE-2024-37546 - 18 hours ago
CVE-2024-37542 - 20 hours ago
CVE-2024-37541 - 20 hours ago
CVE-2024-37539 - 20 hours ago
CVE-2024-39486 - 23 hours ago
CVE-2024-37260 - 23 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 7 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

CVE-2024-40605 - 9 hours ago
CVE-2024-40604 - 9 hours ago
CVE-2024-40603 - 9 hours ago
CVE-2024-40602 - 9 hours ago
CVE-2024-40601 - 9 hours ago
CVE-2024-40600 - 9 hours ago
CVE-2024-40599 - 9 hours ago
CVE-2024-40598 - 9 hours ago
CVE-2024-40596 - 9 hours ago
CVE-2024-40597 - 9 hours ago
CVE-2024-6095 - 15 hours ago
CVE-2024-37553 - 17 hours ago
CVE-2024-37554 - 16 hours ago
CVE-2024-37547 - 18 hours ago
CVE-2024-37546 - 18 hours ago
CVE-2024-37542 - 20 hours ago
CVE-2024-37541 - 20 hours ago
CVE-2024-37539 - 20 hours ago
CVE-2024-39486 - 23 hours ago
CVE-2024-37260 - 23 hours ago