Lucene search
K

4373 matches found

Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.46 views

Mozilla Firefox < 67.0 Multiple Vulnerabilities

Binary data 700727.prm...

9.8CVSS7.8AI score0.09393EPSS
Exploits6References22
UbuntuCve
UbuntuCve
added 2019/05/21 12:0 a.m.16 views

CVE-2019-9819

A vulnerability where a JavaScript compartment mismatch can occur while working with the fetch API, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7, Firefox 67, and Firefox ESR 60.7...

9.8CVSS7.2AI score0.01685EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2019/05/21 12:0 a.m.50 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2019-9815: Disable hyperthreading on content JavaScript threads on macOS CVE-2019-9816: Type confusion with object groups and UnboxedObjects CVE-2019-9817: Stealing of cross-domain images using canvas CVE-2019-9818: Use-after-free in crash generation server...

9.8CVSS0.09393EPSS
Exploits6References3
Veracode
Veracode
added 2019/05/16 2:49 a.m.20 views

Information Disclosure

Firefox ESR and Firefox are vulnerable to information disclosure. A remote unauthenticated user can send a specially crafted request to view potentially sensitive information on the target system. The Fetch API component is affected...

5.9CVSS7.3AI score0.02323EPSS
Exploits0References13Affected Software1
RedhatCVE
RedhatCVE
added 2019/05/13 11:25 a.m.27 views

CVE-2019-8515

A cross-origin issue existed with the fetch API. This was addressed with improved input validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may disclose sensitive user information...

6.5CVSS1.4AI score0.01225EPSS
Exploits0References3
Prion
Prion
added 2019/04/29 3:29 p.m.10 views

Open redirect

In AdBlock before 3.45.0, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

6.8CVSS8.2AI score0.02389EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2019/04/29 3:29 p.m.20 views

CVE-2019-11593

In Adblock Plus before 3.5.2, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

8.1CVSS8.3AI score0.02491EPSS
Exploits0References5
Prion
Prion
added 2019/04/29 3:29 p.m.20 views

Open redirect

In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

6.8CVSS9.1AI score0.02407EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2019/04/29 3:29 p.m.26 views

CVE-2019-11595

In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

9CVSS9.2AI score0.02407EPSS
Exploits1References2
Prion
Prion
added 2019/04/29 3:29 p.m.13 views

Open redirect

In Adblock Plus before 3.5.2, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

6.8CVSS8.2AI score0.02491EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2019/04/29 3:29 p.m.4 views

CVE-2019-11595

In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

9CVSS7.5AI score0.02407EPSS
Exploits1References2
CVE
CVE
added 2019/04/29 2:31 p.m.52 views

CVE-2019-11595

CVE-2019-11595 concerns uBlock before 0.9.5.15, where the $rewrite filter option enables filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script via XMLHttpRequest or Fetch if the script origin has an open redirect. The Red Hat advisory confirms th...

9CVSS9.1AI score0.02407EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/04/29 2:31 p.m.27 views

CVE-2019-11595

In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

9.2AI score0.02407EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/04/29 2:30 p.m.17 views

CVE-2019-11594

In AdBlock before 3.45.0, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

8.3AI score0.02389EPSS
Exploits0References3
CVE
CVE
added 2019/04/29 2:30 p.m.45 views

CVE-2019-11593

CVE-2019-11593 affects Adblock Plus prior to 3.5.2. The vulnerability arises from the $rewrite filter option , which can let filter-list maintainers execute arbitrary code in a client-side session when a service loads a script via XMLHttpRequest or Fetch if the script origin has an open redirect....

8.1CVSS8.2AI score0.02491EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/04/29 2:30 p.m.26 views

CVE-2019-11593

In Adblock Plus before 3.5.2, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect...

8.3AI score0.02491EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.8 views

The vulnerability of the fetch module in the Ansible configuration management system arises from incorrect restrictions on the path to the restricted-access directory. This allows attackers to gain unauthorized access to information and compromise its integrity.

The vulnerability of the fetch module in the Ansible configuration system is related to an incorrect path limitation for the restricted access directory. Exploiting this vulnerability could allow a local attacker to gain unauthorized access to information and compromise its integrity by copying a...

4.2CVSS5.8AI score0.00522EPSS
Exploits0References10Affected Software6
OSV
OSV
added 2019/04/15 4:19 p.m.34 views

GHSA-74VQ-H4Q8-X6JV Ansible Path Traversal vulnerability

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS5.3AI score0.00522EPSS
Exploits0References16
NVD
NVD
added 2019/03/27 1:29 p.m.19 views

CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS5AI score0.00522EPSS
Exploits0References9
OSV
OSV
added 2019/03/27 1:29 p.m.37 views

CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS6.6AI score0.00522EPSS
Exploits0References9
Rows per page
Query Builder