Lucene search
K

274 matches found

Positive Technologies
Positive Technologies
added 2023/05/11 12:0 a.m.3 views

PT-2023-22242 · Debian · Debian

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The filename parameter of the Context.FileAttachment function is not properly sanitized. A maliciously crafted filename can cause the Content-Dispositio...

4.3CVSS4AI score0.00486EPSS
Exploits2References18
Tenable Nessus
Tenable Nessus
added 2023/04/25 12:0 a.m.34 views

Debian DSA-5392-1 : thunderbird - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5392 advisory. - matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. In versions prior to 24.0.0 events sent with special strings in key places can...

8.8CVSS7.5AI score0.01185EPSS
Exploits0References25
Veracode
Veracode
added 2023/04/20 9:38 a.m.35 views

Reflected File Download

firefox is vulnerable to Reflected File Download. The vulnerability exists when handling the filename directive in the Content-Disposition header, and the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks, potentially...

8.8CVSS7.7AI score0.00737EPSS
Exploits0References5Affected Software5
OSV
OSV
added 2023/04/18 4:16 a.m.5 views

USN-6010-2 firefox regressions

USN-6010-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted...

6.1AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/18 12:0 a.m.23 views

Oracle Linux 7 : thunderbird (ELSA-2023-1806)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-1806 advisory. 102.10.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.10.0-2 - Update to...

8.8CVSS7.4AI score0.01185EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2023/04/17 3:3 p.m.3 views

Mozilla: Content-Disposition filename truncation leads to Reflected File Download

The Mozilla Foundation Security Advisory describes this flaw as: When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/04/15 12:0 a.m.31 views

Oracle Linux 9 : firefox (ELSA-2023-1786)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-1786 advisory. 102.10.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.10.0-1 - Update to 102.10.0 build1 102.9.0-4 - Update to 102.9.0 build2 Tenable ha...

8.8CVSS7.4AI score0.00741EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2023/04/14 1:46 p.m.3 views

Mozilla: Content-Disposition filename truncation leads to Reflected File Download

The Mozilla Foundation Security Advisory describes this flaw as: When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.27 views

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2023-102-01)

The version of mozilla-thunderbird installed on the remote host is prior to 102.10.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-102-01 advisory. - OCSP revocation status of recipient certificates was not checked when sending S/Mime encrypted email, and...

9.8CVSS7.9AI score0.00974EPSS
Exploits0References14
OSV
OSV
added 2023/04/12 12:0 a.m.13 views

UBUNTU-CVE-2023-29539

When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to install malware. This vulnerability affects Firefox 112, Focus f...

8.8CVSS7.2AI score0.00737EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/02/28 8:7 a.m.6 views

sinatra: Reflected File Download attack

A flaw was found in Sinatra, a domain-specific language for creating web applications in Ruby. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is derived from user-supplied input...

8.8CVSS5.7AI score0.00642EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/02/21 10:5 a.m.6 views

sinatra: Reflected File Download attack

A flaw was found in Sinatra, a domain-specific language for creating web applications in Ruby. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is derived from user-supplied input...

8.8CVSS5.7AI score0.00642EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/02/21 9:0 a.m.7 views

sinatra: Reflected File Download attack

A flaw was found in Sinatra, a domain-specific language for creating web applications in Ruby. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is derived from user-supplied input...

8.8CVSS5.7AI score0.00642EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:59 a.m.4 views

SUSE CVE-2010-1197

Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, does not properly handle situations in which both "Content-Disposition: attachment" and "Content-Type: multipart" are present in HTTP headers, which allows remote attackers to conduct cross-site scripting XSS...

4.3CVSS8.2AI score0.0207EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:58 a.m.1 views

SUSE CVE-2010-2251

The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted...

7.5CVSS7.9AI score0.03629EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.1 views

SUSE CVE-2022-45442

Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is...

7CVSS7.3AI score0.00642EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2023/02/09 8:15 p.m.3 views

CVE-2022-44571

There is a denial of service vulnerability in the Content-Disposition parsingcomponent of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1, 3.0.0.1. This could allow an attacker to craft an input that can cause Content-Disposition header parsing in Rackto take an unexpected amount of time, possibly...

7.5CVSS6.6AI score0.01503EPSS
Exploits0References4
OSV
OSV
added 2023/02/07 12:6 a.m.7 views

MGASA-2023-0029 Updated ruby-sinatra packages fix security vulnerability

Potential reflected file download RFD vulnerability in ruby-sinatra, a Ruby library for writing HTTP applications. A Content-Disposition HTTP header was being incorrectly derived from a potentially user-supplied filename. CVE-2022-45442...

8.8CVSS8.5AI score0.00642EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/01/24 8:47 a.m.5 views

sinatra: Reflected File Download attack

A flaw was found in Sinatra, a domain-specific language for creating web applications in Ruby. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is derived from user-supplied input...

8.8CVSS5.7AI score0.00642EPSS
Exploits1References4
Snyk
Snyk
added 2023/01/18 6:24 p.m.3 views

Regular Expression Denial of Service (ReDoS)

Overview rack is a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between the so-called middleware into a singl...

7.5CVSS6.8AI score0.01503EPSS
Exploits0References2
Rows per page
Query Builder