Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/31 12:0 a.m.4 views

FreeBSD : Firefox -- content injection attack (a3291f81-3d7c-11f0-9a55-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a3291f81-3d7c-11f0-9a55-b42e991fc52e advisory. [email protected] reports: Previewing a response in Devtools ignored CSP headers, which could have...

6.5CVSS6.4AI score0.00245EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/05/13 1:18 p.m.3 views

Malicious code in firefox-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 27d723f2db7c5589f68811969f49939e22ad3e71b00f741fc7f19a5bb6464da2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/05/13 1:18 p.m.3 views

MAL-2025-3778 Malicious code in firefox-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 27d723f2db7c5589f68811969f49939e22ad3e71b00f741fc7f19a5bb6464da2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.4 views

The vulnerability of the DevTools console in the Firefox web browser, related to the information disclosure feature, allows attackers to gain access to confidential data.

The vulnerability of the DevTools console in the Firefox web browser relates to the disclosure of information. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data...

5.3CVSS6.6AI score0.00496EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2023/10/27 12:0 a.m.6 views

The vulnerability of the DevTools set of tools for web development in the Mozilla Firefox browser and the Thunderbird email client allows a hacker to execute arbitrary commands.

The vulnerability of the DevTools suite for web development in the Mozilla Firefox browser and Thunderbird email client is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

7.8CVSS7.3AI score0.00601EPSS
Exploits0References12Affected Software9
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-5175

A mechanism to bypass Content Security Policy CSP protections on sites that have a "script-src" policy of "'strict-dynamic'". If a target website contains an HTML injection flaw an attacker could inject a reference to a copy of the "require.js" library that is part of Firefox's Developer Tools, a...

6.1CVSS8.5AI score0.01454EPSS
Exploits0References11
Rows per page
Query Builder