Lucene search
K

6 matches found

Veracode
Veracode
added 2025/05/12 3:7 a.m.4 views

Improper URL Parsing

Browser-Use is vulnerable to Improper URL parsing. The vulnerability is due to mishandled handling of alloweddomains when userinfo is included in the authority component within the isurlallowed method, which allows attackers to bypass domain restrictions...

4CVSS6.6AI score0.00445EPSS
Exploits0References5Affected Software1
CNVD
CNVD
added 2019/12/19 12:0 a.m.3 views

GitLab Authorization Issues Vulnerability (CNVD-2020-12719)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. An authorization issue vulnerability exists in GitLab...

8.8CVSS7AI score0.01511EPSS
Exploits1References1
Hacker One
Hacker One
added 2019/06/18 7:51 a.m.49 views

GitLab: Bypass Email Verification using Salesforce -- Reproducible in gitlab.com

Summary The salesforce login integration allows attacker to bypass email verification -- user is able to signup with any email domain they want, effectively bypass all email domain whitelist/blacklist restriction or any other 3rd party using gitlab instance's email address. It is possible because...

6.5CVSS0.7AI score0.01511EPSS
Exploits1
CNVD
CNVD
added 2018/10/25 12:0 a.m.3 views

Mozilla Firefox WebExtension Domain Restriction Bypass Vulnerability

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the U.S. Firefox ESR is an extended support version of Firefox. A security vulnerability exists in Mozilla Firefox versions prior to 63 and Firefox ESR versions prior to 60.3. A remote attacker can exploit this...

7.5CVSS8.3AI score0.02851EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2010/09/25 12:0 a.m.22 views

BlackBerry Cross Origin Bypass

0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + BlackBerry Browser Cross Origin Bypass + Author : 599eme Man + Contact : [email protected]...

0.3AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2009/06/09 12:0 a.m.18 views

Internet Explorer History Index Script Injection (MS09-019; CVE-2009-1140)

Microsoft Internet Explorer is the most widely used Internet browser. An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer caches data and incorrectly allows the cached content to be called, potentially...

7.1CVSS5.6AI score0.24762EPSS
Exploits2
Rows per page
Query Builder