Vulnerabilities > Origin Validation Error
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-23 | CVE-2024-0749 | Origin Validation Error vulnerability in multiple products A phishing site could have repurposed an `about:` dialog to show phishing content with an incorrect origin in the address bar. | 4.3 |
| 2023-12-11 | CVE-2023-49803 | Origin Validation Error vulnerability in Koajs Cross-Origin Resource Sharing for KOA @koa/cors npm provides Cross-Origin Resource Sharing (CORS) for koa, a web framework for Node.js. | 7.5 |
| 2023-12-11 | CVE-2023-49805 | Origin Validation Error vulnerability in multiple products Uptime Kuma is an easy-to-use self-hosted monitoring tool. | 8.8 |
| 2023-11-06 | CVE-2023-28794 | Origin Validation Error vulnerability in Zscaler Client Connector 1.3/1.3.0.31/1.3.1 Origin Validation Error vulnerability in Zscaler Client Connector on Linux allows Privilege Abuse. | 6.5 |
| 2023-11-01 | CVE-2023-5851 | Origin Validation Error vulnerability in multiple products Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. | 4.3 |
| 2023-11-01 | CVE-2023-5853 | Origin Validation Error vulnerability in multiple products Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. | 4.3 |
| 2023-11-01 | CVE-2023-5858 | Origin Validation Error vulnerability in multiple products Inappropriate implementation in WebApp Provider in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to obfuscate security UI via a crafted HTML page. | 4.3 |
| 2023-11-01 | CVE-2023-5859 | Origin Validation Error vulnerability in multiple products Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted local HTML page. | 4.3 |
| 2023-10-23 | CVE-2023-5718 | Origin Validation Error vulnerability in Vuejs Devtools 6.5.0 The Vue.js Devtools extension was found to leak screenshot data back to a malicious web page via the standard `postMessage()` API. | 4.3 |
| 2023-10-23 | CVE-2021-26737 | Origin Validation Error vulnerability in Zscaler Client Connector The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. | 4.7 |