Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2060 matches found

NVD
NVDadded 2020/05/26 6:15 p.m.17 views

CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS6.5AI score0.0035EPSS
Exploits0References7
OSV
OSVadded 2020/05/26 6:15 p.m.2 views

DEBIAN-CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS7.3AI score0.0035EPSS
Exploits0References1
OSV
OSVadded 2020/05/26 6:15 p.m.3 views

CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS8.5AI score
Exploits0References7
Prion
Prionadded 2020/05/26 6:15 p.m.15 views

Design/Logic Flaw

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

2.1CVSS6.2AI score0.0035EPSS
Exploits0References7Affected Software4
NVD
NVDadded 2020/05/26 5:15 p.m.16 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

7.8CVSS8.2AI score0.01011EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2020/05/26 5:15 p.m.17 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

7.8CVSS7.2AI score0.01011EPSS
Exploits0References4
Prion
Prionadded 2020/05/26 5:15 p.m.22 views

Command injection

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

4.6CVSS8.2AI score0.01011EPSS
Exploits0References4Affected Software3
OSV
OSVadded 2020/05/26 5:15 p.m.0 views

UBUNTU-CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

7.8CVSS7.4AI score0.01011EPSS
Exploits0References5
Cvelist
Cvelistadded 2020/05/26 5:1 p.m.13 views

CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

6.7AI score0.0035EPSS
Exploits0References7
CVE
CVEadded 2020/05/26 5:1 p.m.314 views

CVE-2020-12392

CVE-2020-12392 is a local vulnerability in Mozilla products where the “Copy as cURL” feature in DevTools network tab could improperly escape HTTP POST data, enabling potential arbitrary local file disclosure when the generated curl command is pasted and run. Affected are Firefox ESR < 68.8, Fi...

5.5CVSS6.4AI score0.0035EPSS
Exploits0References7Affected Software3
Debian CVE
Debian CVEadded 2020/05/26 5:1 p.m.39 views

CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS7.5AI score0.0035EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2020/05/26 5:1 p.m.43 views

CVE-2020-12392

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in the disclosure of local files. This...

5.5CVSS6.8AI score0.0035EPSS
Exploits0
CVE
CVEadded 2020/05/26 5:1 p.m.260 views

CVE-2020-12393

CVE-2020-12393 affects Firefox on Windows (and related Mozilla products) where the Devtools Network tab’s Copy as cURL feature failed to properly escape the HTTP method, allowing a website-controlled method to be injected into a pasted terminal command and potentially leading to arbitrary command...

7.8CVSS8.1AI score0.01011EPSS
Exploits0References4Affected Software3
Cvelist
Cvelistadded 2020/05/26 5:1 p.m.22 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

8.2AI score0.01011EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2020/05/26 5:1 p.m.22 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

7.8CVSS9.1AI score0.01011EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2020/05/26 5:1 p.m.44 views

CVE-2020-12393

The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, it could have resulted in command injection and arbitrary command...

7.8CVSS8.3AI score0.01011EPSS
Exploits0
Ubuntu
Ubuntuadded 2020/05/26 2:33 p.m.93 views

USN-4373-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, or execute arbitrary code. CVE-2020-6831, CVE-2020-12387, CVE-2020-12395 It wa...

10CVSS7.8AI score0.05693EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2020/05/21 12:0 a.m.48 views

Amazon Linux 2 : thunderbird (ALAS-2020-1429)

The version of thunderbird installed on the remote host is prior to 68.8.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1429 advisory. The Mozilla Foundation Security Advisory describes this flaw as:On 32-bit builds, an out of bounds write could have...

10CVSS8.2AI score0.06305EPSS
Exploits1References21
Ubuntu
Ubuntuadded 2020/05/12 5:52 p.m.93 views

USN-4353-2: Firefox regression

USN-4353-1 fixed vulnerabilities in Firefox. The update caused a regression that impaired the functionality of some addons. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked in ...

7.7AI score
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/05/11 9:54 a.m.3 views

Mozilla: Arbitrary local file access with 'Copy as cURL'

The Mozilla Foundation Security Advisory describes this flaw as: The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of a request, which can be controlled by the website. If a user used the 'Copy as cURL' feature and pasted the command into a terminal, i...

5.5CVSS7.4AI score0.0035EPSS
Exploits0References5
Rows per page
Query Builder