Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

305 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-7669

Malware in sbrugna...

6.5CVSS7.8AI score0.00477EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-19163

Malware in sbrugna...

5.3CVSS7.5AI score0.0131EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-7667

Malware in sbrugna...

5.3CVSS7.3AI score0.00936EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-37429

Malicious code in bioql PyPI...

6.1CVSS7.8AI score0.00406EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.12 views

EUVD-2023-33082

Malicious code in bioql PyPI...

6.1CVSS7.8AI score0.00315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6043

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in External Protocol Handler in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially execute arbitrary...

8.8CVSS8.5AI score0.01735EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2020-15682

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a link to an external protocol was clicked, a prompt was presented that allowed the user to choose what application to open it in. An attacker could induce...

6.5CVSS7.5AI score0.00477EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-22739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol. This vulnerability affects Firefox ESR 91.5,...

6.5CVSS7.6AI score0.00679EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-15680

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a...

5.3CVSS7.3AI score0.00936EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 3:23 a.m.6 views

CVE-2023-29540

Using a redirect embedded into sourceMappingUrls could allow for navigation to external protocol links in sandboxed iframes without allow-top-navigation-to-custom-protocols. This vulnerability affects Firefox for Android 112, Firefox 112, and Focus for Android 112...

6.1CVSS6.1AI score0.00315EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 1:23 a.m.4 views

CVE-2022-34474

Even when an iframe was sandboxed with allow-top-navigation-by-user-activation, if it received a redirect header to an external protocol the browser would process the redirect and prompt the user as appropriate. This vulnerability affects Firefox 102...

6.1CVSS6AI score0.00406EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:24 p.m.8 views

CVE-2020-15680

If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a non-existent protocol handler. This allowed an attacker to successfully probe whether an external protocol handler was registered. This...

5.3CVSS6AI score0.00936EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 3:48 p.m.5 views

CVE-2020-15682

When a link to an external protocol was clicked, a prompt was presented that allowed the user to choose what application to open it in. An attacker could induce that prompt to be associated with an origin they didn't control, resulting in a spoofing attack. This was fixed by changing external...

6.5CVSS5.9AI score0.00477EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/03/10 12:0 a.m.17 views

Amazon Linux 2 : thunderbird (ALAS-2025-2789)

The version of thunderbird installed on the remote host is prior to 128.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2789 advisory. A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This...

9.8CVSS8AI score0.1307EPSS
Exploits0References58
Tenable Nessus
Tenable Nessusadded 2025/03/01 12:0 a.m.11 views

Amazon Linux 2 : firefox (ALASFIREFOX-2025-035)

The version of firefox installed on the remote host is prior to 128.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2025-035 advisory. The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. Thi...

9.8CVSS7.9AI score0.1307EPSS
Exploits0References50
Tenable Nessus
Tenable Nessusadded 2025/02/26 12:0 a.m.22 views

Amazon Linux 2 : firefox (ALASFIREFOX-2025-034)

The version of firefox installed on the remote host is prior to 128.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2025-034 advisory. The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. Thi...

9.8CVSS7.9AI score0.1307EPSS
Exploits0References50
Tenable Nessus
Tenable Nessusadded 2025/02/26 12:0 a.m.23 views

Amazon Linux 2 : thunderbird (ALAS-2025-2765)

The version of thunderbird installed on the remote host is prior to 128.7.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2765 advisory. A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This...

9.8CVSS8AI score0.1307EPSS
Exploits0References58
Amazon
Amazonadded 2025/02/13 7:10 a.m.13 views

Important: thunderbird

Issue Overview: A permission leak could have occurred from a trusted site to an untrusted site via embed or object elements. This vulnerability affects Firefox 132, Firefox ESR 128.4, Firefox ESR 115.17, Thunderbird 128.4, and Thunderbird 132. CVE-2024-10458 An attacker could have caused a...

5.3CVSS7.8AI score0.1307EPSS
Exploits0
AstraLinux
AstraLinuxadded 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Firefox, Thunderbird

The origin of an external protocol handler prompt could have been obscured using a data: URL within an iframe. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

5.4CVSS6.8AI score0.00294EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/01/01 12:0 a.m.2 views

PT-2025-17460

Name of the Vulnerable Software and Affected Versions GNOME Epiphany versions up to 47.4/48.0 Description The issue concerns an external protocol in GNOME Epiphany. Recommendations For versions up to 47.4/48.0, update to a version that contains a fix for this issue...

8CVSS7.4AI score0.00381EPSS
Exploits0References19
Rows per page
Query Builder