ROS-2-1625

2.1625 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

ROS-2-1986

2.1986 Mozilla Thunderbird email client vulnerability CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

The vulnerability of the SwiftShader library in Microsoft Edge and Google Chrome browsers allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the SwiftShader library in Microsoft Edge and Google Chrome browsers is related to buffer overflows during the processing of HTML content. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure through a specially created web pag...

CVE-2021-4038

Cross Site Scripting XSS vulnerability in McAfee Network Security Manager NSM prior to 10.1 Minor 7 allows a remote authenticated administrator to embed a XSS in the administrator interface via specially crafted custom rules containing HTML. NSM did not correctly sanitize custom rule content in a...

PT-2021-5438 · Mcafee · Mcafee Network Security Management

Name of the Vulnerable Software and Affected Versions: McAfee Network Security Manager versions prior to 10.1 Minor 7 Description: The issue is related to a Cross Site Scripting XSS vulnerability that allows a remote authenticated administrator to embed a XSS in the administrator interface via...

The vulnerability of Windows operating system script handlers allows a perpetrator to execute arbitrary code or cause service failures.

The vulnerability of Windows operating system script handlers is related to the operation of writing data beyond the buffer boundaries into memory when processing HTML content. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure through a...

Judge.me : Email templates XSS by filterXSS bypass

Summary: js-xss is used to prevent XSS on email templates previews but the custom onIgnoreTag function can be used to bypass this filter. This leads to a Self-XSS scenario that can be used to achieve Account Takeover in 1-click. js onIgnoreTag: function e, t return "!--if" === e || "!endif--" ===...

Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2021-89692)

Mozilla Firefox is an open source Web browser from the Mozilla Foundation, U.S. A buffer overflow vulnerability exists in versions of Mozilla Firefox prior to 93.0. The vulnerability stems from a boundary error in the program when processing HTML content. A remote attacker could exploit the...

The vulnerability of the Mozilla Firefox browser, related to errors in processing HTML content, allows a hacker to execute arbitrary code within the system.

The vulnerability of the Mozilla Firefox browser is related to errors in processing HTML content. Exploiting this vulnerability allows a remote attacker to execute arbitrary code within the system...

Cross-site Scripting (XSS) - Stored in jspark311/buriedunderthenoisefloor

Description Cross-Site Scripting XSS attacks are a type of injection, in which malicious scripts are injected into websites. An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execut...

Exploit for Cross-site Scripting in Checkmk

CVE-2021-40906 - Reflected XSS in an unauthenticated zone A...

Cross-site Scripting (XSS) - Reflected in yeswiki/yeswiki

Description Cross-Site Scripting XSS attacks are a type of injection, in which malicious scripts are injected into websites. An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execut...

Cross-site Scripting (XSS) - Stored in craigk5n/webcalendar

Description Cross-Site Scripting XSS attacks are a type of injection, in which malicious scripts are injected into websites. An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execut...

Cross-site Scripting (XSS) - Reflected in pheditor/pheditor

Description Cross-Site Scripting XSS attacks are a type of injection, in which malicious scripts are injected into websites. An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execut...

Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2021-90096)

Mozilla Firefox is an open source Web browser from the Mozilla Foundation, U.S. A buffer overflow vulnerability exists in Mozilla Firefox, which stems from a boundary error in the product's handling of HTML content. A remote attacker could exploit the vulnerability to create a specially crafted W...

Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2021-90097)

A buffer overflow vulnerability exists in Mozilla Firefox, an open-source Web browser from the Mozilla Foundation in the U.S. The vulnerability stems from a boundary error in the product's handling of HTML content. A remote attacker could exploit the vulnerability to create a specially crafted We...

Mozilla Firefox Memory Corruption Vulnerability (CNVD-2021-70107)

Mozilla Firefox is an open source Web browser from the Mozilla Foundation, U.S. A memory corruption vulnerability exists in version 91 of Mozilla Firefox, which stems from a boundary error when the product processes HTML content. A remote attacker could use the vulnerability to trick a victim int...

ROS-2-1969

2.1969 Mozilla Thunderbird email client vulnerability CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability could...

ROS-2-1489

2.1489 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

ROS-2-1376

2.1376 Mozilla Firefox browser vulnerability CVE-2021-29970, CVE-2021-29976 1. Vulnerability description: CVE-2021-29970 A vulnerability in the Mozilla Firefox browser, is related to a release error in accessibility functions when processing HTML content. Exploitation of the vulnerability could...