Vulnerabilities > Origin Validation Error
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-18 | CVE-2022-22594 | Origin Validation Error vulnerability in Apple products A cross-origin issue in the IndexDB API was addressed with improved input validation. | 6.5 |
| 2022-03-14 | CVE-2022-24762 | Origin Validation Error vulnerability in Sysend.Js Project Sysend.Js sysend.js is a library that allows a user to send messages between pages that are open in the same browser. | 6.5 |
| 2022-03-03 | CVE-2022-25146 | Origin Validation Error vulnerability in Liferay Digital Experience Platform and Liferay Portal The Remote App module in Liferay Portal Liferay Portal v7.4.3.4 through v7.4.3.8 and Liferay DXP 7.4 before update 5 does not check if the origin of event messages it receives matches the origin of the Remote App, allowing attackers to exfiltrate the CSRF token via a crafted event message. | 5.3 |
| 2022-02-20 | CVE-2021-46701 | Origin Validation Error vulnerability in Premid 2.2.0 PreMiD 2.2.0 allows unintended access via the websocket transport. | 6.5 |
| 2022-02-12 | CVE-2022-0108 | Origin Validation Error vulnerability in multiple products Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2022-02-12 | CVE-2022-0111 | Origin Validation Error vulnerability in multiple products Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page. | 6.5 |
| 2022-02-12 | CVE-2022-0113 | Origin Validation Error vulnerability in multiple products Inappropriate implementation in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2022-02-12 | CVE-2022-0120 | Origin Validation Error vulnerability in multiple products Inappropriate implementation in Passwords in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially leak cross-origin data via a malicious website. | 6.5 |
| 2022-01-25 | CVE-2022-23032 | Origin Validation Error vulnerability in F5 Big-Ip Access Policy Manager In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, connecting BIG-IP Edge Client on Mac and Windows is vulnerable to a DNS rebinding attack. | 5.3 |
| 2022-01-10 | CVE-2021-44458 | Origin Validation Error vulnerability in Mirantis Lens Linux users running Lens 5.2.6 and earlier could be compromised by visiting a malicious website. | 9.6 |