4 matches found
CVE-2026-57963
The CVE describes a vulnerability in Thunderbird’s chat UI where an attacker who can send HTML chat messages (via Matrix or XMPP) can inject arbitrary styled content, phishing links, and CSS that manipulates the chat UI. Affected product: Thunderbird (chat UI component). Root cause: HTML/CSS cont...
ROS-20250821-04
Vulnerability in libsoup library is related to disclosure of system data to unauthorized parties. Exploitation exploitation of the vulnerability could allow a remote attacker to disclose protected information. GNOME GUI libsoup library vulnerability is related to asymmetric resource consumption...
SUSE CVE-2008-3824
Cross-site scripting XSS vulnerability in 1 TextFilter/Filter/xss.php in Horde 3.1.x before 3.1.9 and 3.2.x before 3.2.2 and 2 externalinput.php in Popoon r22196 and earlier allows remote attackers to inject arbitrary web script or HTML by using / slash characters as replacements for spaces in an...
Mozilla Thunderbird XML Content Parsing Buffer Overflow Vulnerability
Mozilla Thunderbird is a mail tool adapted from the mail widget of the Mozilla browser. A buffer overflow vulnerability in Mozilla Thunderbird's handling of compressed XML content allows remote attackers to exploit the vulnerability by submitting a specially crafted HTML message that can be trick...