📄 WebFileSys 2.31.1 Cross Site Scripting

WebFileSys version 2.31.1 suffers from multiple cross site scripting vulnerabilities. CVE-2026-29971 An attacker can execute arbitrary JavaScript in the victim's browser, potentially leading to session hijacking or privilege escalation. CVE-2026-29971 Vulnerability Reflected Cross-Site Scripting...

CVE-2026-29971

creationtimestamp| type| source ---|---|--- 2026-03-26 23:00:04+00:00| seen| https://t.me/GithubRedTeam/77405 2026-03-26 23:00:14+00:00| published-proof-of-concept| Telegram/0XiQVvLI9OtTexbSWP04ktWorEJ1qgGSsz80l9L0cFlDChA 2026-03-27 03:00:09+00:00| published-proof-of-concept|...

CVE-2024-29971

Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...

CVE-2021-29971

If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 90...

CVE-2025-29971

Out-of-bounds read in Web Threat Defense WTD.sys allows an unauthorized attacker to deny service over a network...

CVE-2025-29971

Out-of-bounds read in Web Threat Defense WTD.sys allows an unauthorized attacker to deny service over a network...

CVE-2025-29971 Web Threat Defense (WTD.sys) Denial of Service Vulnerability

...

CVE-2025-29971

creationtimestamp| type| source ---|---|--- 2025-05-13 16:27:02+00:00| seen| https://www.thezdi.com/blog/2025/5/13/the-may-2025-security-update-review 2025-05-22 22:53:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17365...

CVE-2024-29971

Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...

CVE-2024-29971

creationtimestamp| type| source ---|---|--- 2025-01-10 16:03:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1159 2025-01-10 16:15:58+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfflojbudx2e 2025-01-10 18:00:51+00:00| seen|...

CVE-2024-29971

CVE-2024-29971 concerns Scontain SCONE 5.8.0, described across multiple sources as an interface vulnerability that leads to state corruption via injected signals. The CVE entry notes a critical impact (CVSS v3.1: 9.8, Confidentiality/Integrity/Availability all high) with network attack vector and...

CVE-2024-29971

Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...

CVE-2022-29971

CVE-2022-29971 affects the Magnitude Simba Amazon Athena ODBC Driver, versions 1.1.1 through 1.1.x before 1.1.17, with an argument injection vulnerability in the browser-based authentication component that may allow a local user to execute arbitrary code. Root cause per description: improper hand...

CVE-2021-29971

creationtimestamp| type| source ---|---|--- 2021-08-06 00:31:35+00:00| seen| https://t.me/cibsecurity/26895...

CVE-2021-29971

CVE-2021-29971 is a Mozilla Firefox vulnerability affecting Firefox for Android. The issue arises when a user grants a webpage permission and saves it; any webpage on the same host (regardless of scheme or port) could gain that permission. The advisory details that this affects Firefox versions o...

KLA12228 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. A securit...

Mozilla Firefox < 90.0

The version of Firefox installed on the remote Windows host is prior to 90.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-28 advisory. - If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespecti...