63 matches found
Design/Logic Flaw
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2017-16581
Foxit Reader 8.3.2.25013 is affected by CVE-2017-16581. The vulnerability is a remote code execution flaw in the author attribute of the Document object due to not validating the existence of an object before performing operations. Exploitation requires user interaction (visiting a malicious page...
CVE-2015-5282
Cross-site scripting XSS vulnerability in Foreman 1.7.0 and after...
CVE-2015-5282
Foreman (versions 1.7.0 and later) has a documented Cross‑Site Scripting (XSS) vulnerability that allows a remote attacker to execute HTML. The CNVD entry notes Foreman 1.7.0+ is affected and references a commit (4f3555b217be8723e8045f9816d147b5f684ec57) as part of the fix, indicating a remediati...
CVE-2012-5282
This CVE entry is rejected/not used and does not represent an active vulnerability entry.
CVE-2012-5282
...
CVE-2016-5282
Mozilla Firefox is affected by CVE-2016-5282. Affects Firefox
CVE-2016-5282
Mozilla Firefox before 49.0 does not properly restrict the scheme in favicon requests, which might allow remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by a jar: URL for a favicon resource...
UBUNTU-CVE-2016-5282
Mozilla Firefox before 49.0 does not properly restrict the scheme in favicon requests, which might allow remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by a jar: URL for a favicon resource...
CVE-2016-5282
Mozilla Firefox before 49.0 does not properly restrict the scheme in favicon requests, which might allow remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by a jar: URL for a favicon resource...
iniNet SpiderControl SCADA Editor 6.30.01 Privilege Escalation Vulnerability
iniNet SpiderControl SCADA Editor version 6.30.01 suffers from an insecure file permission vulnerability that can lead to privilege escalation. iniNet SpiderControl SCADA Editor 6.30.01 Insecure File Permissions Vendor: iniNet Solutions GmbH Product web page: http://www.spidercontrol.net Affected...
iniNet SpiderControl SCADA Editor 6.30.01 Privilege Escalation
iniNet SpiderControl SCADA Editor 6.30.01 Insecure File Permissions Vendor: iniNet Solutions GmbH Product web page: http://www.spidercontrol.net Affected version: 6.30.01 Build 6300101 Summary: Modular and automated engineering is provided for HMI and SCADA. The tools are developed to join a...
CVE-2010-5282
CVE-2010-5282 describes multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink ECM) 9.7.1. The flaws allow remote attackers to inject arbitrary web script or HTML via parameters in the browser action (viewType, sort) to livelink/livelink, and via (nodeid, setctx, s...
FreeBSD Ports: amaya
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
W3C Amaya Multiple Buffer Overflow Vulnerabilities (Dec 2008) - Linux
W3C Amaya Web Browser is prone to multiple stack based Buffer Overflow vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2008-5282
Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote attackers to execute arbitrary code via 1 a link with a long HREF attribute, and 2 a DIV tag with a long id attribute...
CVE-2008-5282
CVE-2008-5282 concerns the W3C Amaya Web Browser (notably version 10.0.1) and describes multiple stack-based buffer overflow vulnerabilities. The flaws allow remote attackers to execute arbitrary code by supplying a link with an excessively long HREF attribute and by using a DIV tag with a very l...
CVE-2008-5282
creationtimestamp| type| source ---|---|--- 2008-11-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7213 2008-11-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7209...
CVE-2007-5287
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-5282. Reason: This candidate is a duplicate of CVE-2007-5282. Notes: All CVE users should reference CVE-2007-5282 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-5282. Reason: This candidate is a duplicate of CVE-2007-5282. Notes: All CVE users should reference CVE-2007-5282 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...