Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 27 |
|---|---|---|---|---|
 | The vulnerability in Microsoft Edge and Internet Explorer browsers allows attackers to bypass certificate verification. | 23 Mar 201700:00 | – | bdu_fstec |
 | Microsoft Internet Explorer and Edge Spoofing Vulnerability | 15 Mar 201700:00 | – | cnvd |
 | CVE-2017-0012 | 17 Mar 201700:00 | – | cvelist |
 | EUVD-2017-0379 | 7 Oct 202500:30 | – | euvd |
 | Internet Explorer help | 14 Mar 201707:00 | – | mskb |
| March 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1 | 14 Mar 201707:00 | – | mskb |
| March 2017 Security Monthly Quality Rollup for Windows 8.1 and Windows Server 2012 R2 | 14 Mar 201707:00 | – | mskb |
| March 14, 2017—KB4012606 (OS Build 10240.17319) | 14 Mar 201707:00 | – | mskb |
| MS17-007: Cumulative security update for Microsoft Edge: March 14, 2017 | 14 Mar 201700:00 | – | mskb |
| MS17-006: Cumulative security update for Internet Explorer: March 14, 2017 | 14 Mar 201700:00 | – | mskb |
10
Node
[
{
"product": "Browsers",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Internet Explorer 11 and Microsoft Edge"
}
]
}
]| Source | Link |
|---|---|
| securityfocus | www.securityfocus.com/bid/96085 |
| securitytracker | www.securitytracker.com/id/1038006 |
| portal | www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0012 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| parent.window.opener.location | nested | www.qq.com | Cross-domain opener redirection via window.opener.location allows an attacker to navigate the opener to a controlled domain. | CWE-20 |
| parent.window.opener.location | nested | www.inetsrc.com/ref.php | Referer-based trust manipulation through cross-domain opener navigation to a potentially malicious endpoint. | CWE-20 |
| parent.window.opener.location | nested | i.qq.com | Cross-domain opener redirection to a QQ domain, enabling potential leakage or CSRF-like behavior via opener. | CWE-20 |
| parent.window.opener.location | nested | www.esqsm.com/index.php | Cross-domain opener redirection to an external site, enabling potential user flow manipulation. | CWE-20 |
| parent.window.opener.location | nested | mail.qq.com | Cross-domain opener navigation to a mailbox domain, risking leakage or session association via referer/header. | CWE-20 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 00:56Current
4.3Medium risk
Vulners AI Score4.3
CVSS 34.3
CVSS 24.3
EPSS0.07586