Lucene search
K

90 matches found

ATTACKERKB
ATTACKERKB
added 2022/03/25 10:15 p.m.3 views

CVE-2021-44683

The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function used to open a secondary browser window. This could be exploited by tricking users into supplying sensitive information such as credentials, because the address bar would...

8.2CVSS7.2AI score0.00957EPSS
Exploits1References2
Prion
Prion
added 2022/03/25 10:15 p.m.19 views

Design/Logic Flaw

The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function used to open a secondary browser window. This could be exploited by tricking users into supplying sensitive information such as credentials, because the address bar would...

5.8CVSS7.5AI score0.00957EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/25 9:13 p.m.27 views

CVE-2021-44683

The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function used to open a secondary browser window. This could be exploited by tricking users into supplying sensitive information such as credentials, because the address bar would...

7.8AI score0.00957EPSS
Exploits1References1
CVE
CVE
added 2022/03/25 9:13 p.m.76 views

CVE-2021-44683

The CVE-2021-44683 entry concerns the DuckDuckGo browser on iOS (version 7.64.4). The issue is a spoofing vulnerability caused by mishandling of the JavaScript window.open function, which can allow an attacker to show a legitimate-looking URL in the address bar while serving content from the atta...

8.2CVSS7.5AI score0.00957EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/03/25 12:0 a.m.5 views

DuckDuckGo application 安全漏洞

Duckduckgo DuckDuckGo application is a privacy web browser application for mobile by DuckDuckGo Duckduckgo, Inc. A security vulnerability exists in DuckDuckGo browser 7.64.4 on iOS, which stems from incorrect handling of the JavaScript window.open function used to open a secondary browser window...

8.2CVSS7.7AI score0.00957EPSS
Exploits1References2
Malwarebytes
Malwarebytes
added 2022/02/25 12:50 p.m.21 views

Google and Microsoft accused of feeding smaller search engines spam ads

Google and Microsoft appear to have been flooding their smaller search engine rivals with spam ads, to limit the number of higher-value ads that appear on them, according to data viewed by POLITICO. Ads are considered "spam" if they appear in search results but have little to no relevance to the...

7.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2022/01/06 12:29 p.m.12 views

People Are Increasingly Choosing Private Web Search

DuckDuckGo has had a banner year: And yet, DuckDuckGo. The privacy-oriented search engine netted more than 35 billion search queries in 2021, a 46.4% jump over 2020 23.6 billion. Thats big. Even so, the company, which bills itself as the "Internet privacy company," offering a search engine and...

1.1AI score
Exploits0
HackRead
HackRead
added 2021/12/22 5:4 p.m.16 views

DuckDuckGo developing a robust privacy-focused desktop browser

By Waqas According to DuckDuckGo, the desktop browser will work on both Mac and Windows devices. This is a post from HackRead.com Read the original post: DuckDuckGo developing a robust privacy-focused desktop browser...

2.2AI score
Exploits0
0day.today
0day.today
added 2021/12/04 12:0 a.m.550 views

DuckDuckGo 7.64.4 Address Bar Spoofing Vulnerability

Vulnerability: Address Bar Spoofing Vulnerability Product: DuckDuckGo Discovered by: Rafay Baloch and Muhammad Samak Version: 7.64.4 Impact: Moderate Company: Cyber Citadel Website: https://www.cybercitadel.com Description DuckDuckGo browser for iOS was prone to an "Address Bar Spoofing"...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/03 12:0 a.m.459 views

DuckDuckGo 7.64.4 Address Bar Spoofing

Vulnerability: Address Bar Spoofing Vulnerability Product: DuckDuckGo Discovered by: Rafay Baloch and Muhammad Samak Version: 7.64.4 Impact: Moderate Company: Cyber Citadel Website: https://www.cybercitadel.com Description DuckDuckGo browser for iOS was prone to an "Address Bar Spoofing"...

0.1AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2021/11/18 2:0 p.m.19 views

DuckDuckGo Wants to Stop Apps From Tracking You on Android

The privacy-focused tech company's latest update promises to block invasive data collection across your whole phone...

7AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2021/06/16 11:0 a.m.24 views

DuckDuckGo’s Quest to Prove Online Privacy Is Possible

The company best known for its search engine is launching a new set of tools aimed at creating an “easy button” for protecting your data online...

3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/18 9:5 a.m.144 views

Google Reveals What Personal Data Chrome and Its Apps Collect On You

Privacy-focused search engine DuckDuckGo called out rival Google for "spying" on users after the search giant updated its flagship app to spell out the exact kinds of information it collects for personalization and marketing purposes. "After months of stalling, Google finally revealed how much...

6.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/18 9:5 a.m.6 views

Google Reveals What Personal Data Chrome and Its Apps Collect On You

Privacy-focused search engine DuckDuckGo called out rival Google for "spying" on users after the search giant updated its flagship app to spell out the exact kinds of information it collects for personalization and marketing purposes. "After months of stalling, Google finally revealed how much...

5.8AI score
Exploits0
Hacker One
Hacker One
added 2021/02/24 3:19 p.m.69 views

DuckDuckGo: Reflected/Stored XSS on duckduckgo.com

Hi DuckDuckGo, While browsing normally since I use DuckDuckGo on a daily basis, I discovered an interesting stored XSS on the duckduckgo main search engine. A payload that somebody had left on urbandictionary.com had triggered a HTML injection, and a stored XSS as a result. Steps to Reproduce 1...

0.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/01/28 8:1 a.m.69 views

Why Data Privacy Day matters: A Lock and Code special with Mozilla, DuckDuckGo, and EFF

You can read our full-length blog here about the importance of Data Privacy Day and data privacy in general Today is a special day, not just because January 28 marks Data Privacy Day in the United States and in several countries across the world, but because it also marks the return of our hit...

Exploits0
Hacker One
Hacker One
added 2021/01/08 6:52 p.m.37 views

DuckDuckGo: com.duckduckgo.mobile.android - Cache corruption

Summary: By opening a special url, the app cache can be corrupted which can't be resolved by the user without reinstalling the app. Steps To Reproduce: 1. Download and install the DuckDuckGo App 2. Open https://%22t.dev/ 3. Try to reopen the app The app keeps crashing Additional information -...

6.9AI score
Exploits0
Hacker One
Hacker One
added 2020/07/12 6:7 p.m.38 views

DuckDuckGo: DOM XSS on duckduckgo.com search

Hey there, there is a DOM XXS vulnerability on the https://duckduckgo.com/ search result page through the kp and kae parameters of the Cloud Save feature. POC URL:...

0.6AI score
Exploits0
HackRead
HackRead
added 2020/07/03 6:14 p.m.29 views

DuckDuckGo collecting user browsing data without consent (Updated)

By Sudais Asif An ethical hacker on Twitter revealed how DuckDuckGo intentionally... This is a post from HackRead.com Read the original post: DuckDuckGo collecting user browsing data without consent Updated...

2.1AI score
Exploits0
CNVD
CNVD
added 2020/07/03 12:0 a.m.6 views

DuckDuckGo Application Information Disclosure Vulnerability

DuckDuckGo application is a privacy web browser application for mobile by DuckDuckGo Inc. in the United States. A security vulnerability exists in DuckDuckGo application version 5.58.0 and earlier Android and version 7.47.1.0 and earlier iOS. The vulnerability stems from a configuration or other...

7.5CVSS7AI score0.01533EPSS
Exploits0References1
Rows per page
Query Builder