CVE-2025-8578 – Google Chrome Use After Free Heap Corruption Vulnerability

August 7, 2025

CVE ID : CVE-2025-8578

Published : Aug. 7, 2025, 2:15 a.m. | 21 hours, 55 minutes ago

Description : Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-24000 – WPExperts Post SMTP Authentication Bypass

Next Article CVE-2025-8576 – “Google Chrome Extensions Use After Free Heap Corruption Vulnerability”

Highlights

CVE-2025-53934 – WeGIA Stored Cross-Site Scripting (XSS) Vulnerability

July 16, 2025

CVE ID : CVE-2025-53934

Published : July 16, 2025, 4:15 p.m. | 2 hours, 28 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `control.php` endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows attackers to inject malicious scripts into the `descricao_emergencia` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. Version 3.4.5 fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

CVE-2025-8578 – Google Chrome Use After Free Heap Corruption Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

PHP 8.5.0 Beta 1 available for testing

Distribution Release: Securonis Linux 3.0

CVE-2025-49449 – WP Map Plugins Interactive Regional Map of Africa CSRF Vulnerability

Trusted Smart Interactive Whiteboard Dealer in Delhi for Education

CVE-2025-53934 – WeGIA Stored Cross-Site Scripting (XSS) Vulnerability

AgentSociety: An Open Source AI Framework for Simulating Large-Scale Societal Interactions with LLM Agents

CVE-2025-46060 – TOTOLINK N600R Buffer Overflow Vulnerability

Rilasciata KDE Gear 25.04: La Collezione di Applicazioni KDE si Rinnova con Tante Novità

CVE-2025-8578 – Google Chrome Use After Free Heap Corruption Vulnerability

Related Posts