wpewebkit vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the wpewebkit package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
CVE-2024-44308

*
  • M
Cross-site Scripting (XSS)

*
  • M
CVE-2024-44296

*
  • M
CVE-2024-44185

*
  • M
Out-of-bounds Write

*
  • H
CVE-2024-27820

*
  • H
CVE-2024-27808

*
  • H
Integer Overflow or Wraparound

*
  • M
CVE-2024-27838

*
  • M
CVE-2024-40866

*
  • M
Origin Validation Error

*
  • H
Out-of-Bounds

*
  • M
CVE-2024-23271

*
  • M
Cross-site Scripting (XSS)

*
  • M
CVE-2024-40789

*
  • M
CVE-2024-40794

*
  • M
Out-of-bounds Read

*
  • M
Use After Free

*
  • L
CVE-2024-4558

*
  • M
Out-of-bounds Read

*
  • M
Use After Free

*
  • M
CVE-2024-27834

*
  • M
Arbitrary Code Injection

*
  • M
CVE-2024-23254

*
  • M
CVE-2024-23284

*
  • H
CVE-2023-42950

*
  • M
CVE-2024-23263

*
  • M
CVE-2023-42956

*
  • M
Authentication Bypass

*
  • H
Resource Management Errors

*
  • H
CVE-2023-42833

<2.38.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • C
Use After Free

*
  • H
CVE-2024-23213

*
  • M
CVE-2024-23206

*
  • M
CVE-2023-42883

*
  • H
CVE-2023-42890

*
  • H
Out-of-bounds Write

*
  • M
Out-of-bounds Read

*
  • M
Out-of-Bounds

*
  • H
CVE-2023-42852

*
  • M
Improper Restriction of Rendered UI Layers or Frames

<2.38.4-1
  • M
CVE-2022-46725

<2.38.4-1
  • M
CVE-2022-46705

<2.38.4-1
  • H
CVE-2023-32359

*
  • M
CVE-2022-32933

<2.38.0-1
  • H
Use After Free

*
  • H
Use After Free

*
  • H
CVE-2023-35074

*
  • H
Improper Check for Unusual or Exceptional Conditions

*
  • H
CVE-2023-41074

*
  • H
CVE-2023-40451

*
  • C
CVE-2023-40397

*
  • H
Use After Free

*
  • M
CVE-2023-32370

*
  • H
CVE-2023-38611

*
  • M
CVE-2023-38599

*
  • H
CVE-2023-38595

*
  • H
CVE-2023-38592

*
  • H
CVE-2023-38600

*
  • H
CVE-2023-38597

*
  • M
CVE-2023-38133

*
  • H
CVE-2023-38572

*
  • H
CVE-2023-38594

*
  • H
CVE-2023-32393

*
  • H
CVE-2023-37450

*
  • H
CVE-2022-48503

<2.38.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

*
  • H
Out-of-bounds Write

*
  • L
CVE-2023-32409

*
  • H
Use After Free

*
  • M
Out-of-bounds Read

*
  • M
CVE-2023-27932

<2.38.6-1
  • H
Use After Free

<2.38.6-1
  • M
CVE-2023-27954

<2.38.6-1
  • H
Out-of-bounds Write

<2.38.6-1
  • H
Use After Free

<2.38.0-1
  • H
Use After Free

<2.38.0-1
  • H
Use After Free

<2.38.0-1
  • H
Use After Free

<2.38.0-1
  • H
Use After Free

<2.38.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.38.5-1
  • H
CVE-2023-23518

<2.38.4-1
  • H
CVE-2023-23517

<2.38.4-1
  • H
Use After Free

<2.38.4-1
  • H
Out-of-bounds Write

<2.38.3-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.38.3-1
  • H
Use After Free

<2.38.3-1
  • M
CVE-2022-46692

<2.38.3-1
  • H
Out-of-bounds Write

<2.38.0-1
  • H
Out-of-bounds Write

<2.38.1-1
  • M
CVE-2022-46698

<2.38.3-1
  • H
Out-of-bounds Write

<2.38.3-1
  • M
CVE-2022-42852

<2.38.3-1
  • M
CVE-2022-42824

<2.38.2-1
  • M
Improper Restriction of Rendered UI Layers or Frames

<2.38.2-1
  • M
CVE-2022-32923

<2.38.0-1
  • H
Out-of-bounds Write

<2.38.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.38.2-1
  • H
Out-of-bounds Write

<2.38.0-1
  • M
Improper Restriction of Rendered UI Layers or Frames

<2.36.6-1
  • H
Out-of-bounds Write

<2.36.7-1
  • M
CVE-2022-32816

<2.36.6-1
  • H
Out-of-bounds Write

<2.36.6-1
  • M
CVE-2022-22662

<2.36.0-2
  • M
CVE-2022-22677

<2.36.4-1
  • H
Use After Free

<2.36.4-1
  • L
Out-of-bounds Write

<2.36.6-1
  • H
Use After Free

<2.36.3-1
  • H
Out-of-bounds Write

<2.36.3-1
  • H
Use After Free

<2.36.3-1
  • H
Out-of-bounds Write

<2.36.3-1
  • H
Out-of-bounds Write

<2.36.3-1
  • H
Out-of-bounds Write

<2.36.1-1
  • H
Out-of-bounds Write

<2.36.0-2
  • H
Use After Free

<2.36.0-2
  • H
Use After Free

<2.36.0-2
  • H
CVE-2022-22637

<2.34.4-1
  • H
Use After Free

<2.34.6-1
  • H
Use After Free

<2.34.5-1
  • M
CVE-2022-22592

<2.34.5-1
  • M
CVE-2022-22589

<2.34.5-1
  • M
Origin Validation Error

<2.34.4-1
  • H
Race Condition

<2.34.4-1
  • H
Use After Free

<2.34.4-1
  • H
Buffer Overflow

<2.34.4-1
  • H
Out-of-bounds Read

<2.34.4-1
  • H
Integer Overflow or Wraparound

<2.34.4-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.34.4-1
  • H
Use After Free

<2.34.4-1
  • M
Use After Free

<2.32.4-1
  • M
Memory Leak

<2.34.1-1
  • M
Use After Free

<2.34.1-1
  • M
Origin Validation Error

<2.38.6-1
  • H
Open Redirect

<2.34.1-1
  • H
Use After Free

<2.32.4-1
  • M
Cross-site Scripting (XSS)

<2.34.3-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.34.1-1
  • M
CVE-2021-30887

<2.34.3-1
  • H
Buffer Overflow

<2.34.1-1
  • M
Out-of-bounds Read

<2.32.4-1
  • M
CVE-2021-30884

<2.34.1-1
  • M
CVE-2021-30823

<2.34.1-1
  • H
Out-of-bounds Write

<2.34.1-1
  • H
Out-of-bounds Write

<2.32.4-1
  • H
Out-of-bounds Write

<2.32.4-1
  • H
Out-of-bounds Write

<2.34.1-1
  • M
CVE-2021-42762

<2.34.1-1
  • H
Use After Free

<2.32.4-1
  • H
Out-of-bounds Write

<2.30.0-1
  • H
Use After Free

<2.30.0-1
  • H
Out-of-bounds Write

<2.32.3-1
  • M
Cross-site Scripting (XSS)

<2.32.3-1
  • H
Use After Free

<2.32.3-1
  • M
CVE-2021-30682

<2.32.0-2
  • M
Improper Authentication

<2.32.3-1
  • H
Out-of-bounds Write

<2.26.3-1
  • H
Integer Overflow or Wraparound

<2.32.3-1
  • H
Out-of-bounds Write

<2.32.3-1
  • M
Exposure of Resource to Wrong Sphere

<2.30.0-1
  • M
Cross-site Scripting (XSS)

<2.30.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.32.2-1
  • M
Cross-site Scripting (XSS)

<2.32.3-1
  • H
Buffer Overflow

<2.26.3-1
  • H
Out-of-bounds Write

<2.32.3-1
  • H
Out-of-Bounds

<2.32.3-1
  • H
Use After Free

<2.28.0-1
  • H
CVE-2021-30797

<2.32.3-1
  • M
Cross-site Scripting (XSS)

<2.30.0-1
  • H
Use After Free

<2.30.6-1
  • H
Use After Free

<2.32.3-1
  • H
Use After Free

<2.32.3-1
  • H
Out-of-Bounds

<2.32.0-2
  • C
CVE-2021-1871

<2.32.0-2
  • H
Use After Free

<2.32.0-2
  • C
CVE-2021-1870

<2.30.6-1
  • M
CVE-2021-1799

<2.30.6-1
  • M
CVE-2021-1801

<2.30.6-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.30.6-1
  • M
CVE-2021-1765

<2.30.6-1
  • H
Use After Free

<2.30.0-1
  • H
Use After Free

<2.30.6-1
  • L
CVE-2020-29623

<2.30.6-1
  • H
Use After Free

<2.30.5-1
  • H
Use After Free

<2.30.3-1
  • H
Out-of-bounds Write

<2.30.3-1
  • H
Use After Free

<2.30.0-1
  • H
Cross-site Scripting (XSS)

<2.28.3-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.30.0-1
  • H
Use After Free

<2.30.3-1
  • C
Use After Free

<2.28.4-1
  • M
Cross-site Scripting (XSS)

<2.28.4-1
  • H
Arbitrary Command Injection

<2.28.4-1
  • H
Use After Free

<2.28.4-1
  • M
Out-of-bounds Read

<2.28.4-1
  • M
CVE-2020-9915

<2.28.4-1
  • H
Cross-site Scripting (XSS)

<2.28.3-1
  • H
Out-of-Bounds

<2.28.3-1
  • C
Improper Input Validation

<2.28.3-1
  • C
CVE-2020-9850

<2.28.3-1
  • H
Out-of-Bounds

<2.28.3-1
  • H
Out-of-Bounds

<2.28.3-1
  • H
CVE-2020-9802

<2.28.3-1
  • H
Cross-site Scripting (XSS)

<2.28.3-1
  • M
Always-Incorrect Control Flow Implementation

<2.28.0-1
  • H
Resource Exhaustion

<2.28.2-1
  • L
Race Condition

<2.28.0-1
  • H
Out-of-Bounds

<2.28.0-1
  • H
Out-of-Bounds

<2.28.0-1
  • M
Cross-site Scripting (XSS)

<2.28.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.28.0-1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<2.28.0-1
  • H
Use After Free

<2.28.1-1
  • C
Improper Input Validation

<2.28.0-1
  • M
Cross-site Scripting (XSS)

<2.26.4-1
  • H
Out-of-Bounds

<2.26.4-1
  • H
Out-of-Bounds

<2.26.4-1
  • M
Out-of-Bounds

<2.26.4-1
  • H
Origin Validation Error

<2.26.4-1