Known Vulnerabilities for Browser by Aol
Listed below are 10 of the newest known vulnerabilities associated with "Browser" by "Aol".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-61876 json | LuCI versions fail to properly encode DHCPv6 lease hostnames before rendering in status tables, allowing adjacent network att... | Not Provided | 2026-07-12 | 2026-07-12 |
| CVE-2026-61456 json | The Grav API plugin (getgrav/grav-plugin-api) before 1.0.3 fails to sanitize SVG files uploaded through the POST /api/v1/medi... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-61448 json | Parse Server is affected by a stored cross-site scripting (XSS) vulnerability in versions >= 9.0.0, < 9.10.0-alpha.2 and <= 8... | Not Provided | 2026-07-11 | 2026-07-11 |
| CVE-2026-61429 json | PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerability in the Crawl4AI/Chromium backend that al... | Not Provided | 2026-07-11 | 2026-07-11 |
| CVE-2026-60092 json | AVideo (Meet plugin) through commit e8d6119f3cb1b849149906efeb0a41fc024f59f8 contains a stored cross-site scripting vulnerabi... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-59723 json | Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, the Cline Hub dashboard serv... | Not Provided | 2026-07-08 | 2026-07-10 |
| CVE-2026-59153 json | Anki is a program for creating and reviewing flashcards. Prior to 25.09.3, Anki launches a local HTTP server to serve media f... | Not Provided | 2026-07-07 | 2026-07-08 |
| CVE-2026-58656 json | Grav API plugin before v1.0.0-rc.16 accepts JWT tokens via the ?token= URL query parameter and responds with Access-Control-A... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-58168 json | DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users to invoke unre... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-58144 json | Cotonti Siena 0.9.26 and earlier contains a stored cross-site scripting vulnerability that allows authenticated users with PF... | Not Provided | 2026-07-09 | 2026-07-10 |