Security Vulnerabilities, CVEs, Published In 2014 (XSS) CVSS score >= 7
Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype function in runtime.cc in Google V8, as used in Google Chrome before 34.0.1847.116, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."
Max CVSS
7.5
EPSS Score
0.57%
Published
2014-04-09
Updated
2018-10-30
The Conceptronic C54APM access point with runtime code 1.26 has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via an HTTP request, as demonstrated by stored XSS attacks.
Max CVSS
7.8
EPSS Score
0.57%
Published
2014-01-10
Updated
2014-05-05
2 vulnerabilities found