Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

22 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-16923

Malware in sbrugna...

7.5CVSS8.4AI score0.01362EPSS
Exploits0References8
OSV
OSVadded 2024/05/15 9:6 p.m.10 views

GHSA-8C85-4RR5-CHR4 Cross-site Scripting (XSS) in DemoBundle/ezdemo bundled VideoJS

This Security Advisory is about a vulnerability in VideoJS, which is bundled in DemoBundle and the ezdemo legacy extension. Older releases of VideoJS contain an XSS vulnerability in the Flash-based video player. This is bundled in DemoBundle, and in the Legacy "ezdemo" and "ezdemo-ls-extension"...

6.2AI score
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:32 a.m.2 views

SUSE CVE-2018-5137

A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects...

7.5CVSS8.3AI score0.01362EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-5178

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS8.9AI score0.18164EPSS
Exploits1References17
OSV
OSVadded 2018/06/11 9:29 p.m.10 views

CVE-2018-5178

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS9.2AI score
Exploits0References16
OSV
OSVadded 2018/06/11 9:29 p.m.1 views

DEBIAN-CVE-2018-5178

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS8.5AI score0.18164EPSS
Exploits1References1
OSV
OSVadded 2018/06/11 9:29 p.m.1 views

CVE-2018-5137

A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects...

7.5CVSS7.4AI score0.01362EPSS
Exploits0References5
NVD
NVDadded 2018/06/11 9:29 p.m.15 views

CVE-2018-5137

A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects...

7.5CVSS6.9AI score0.01362EPSS
Exploits0References5
Prion
Prionadded 2018/06/11 9:29 p.m.12 views

Path traversal

A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects...

5CVSS7.6AI score0.01362EPSS
Exploits0References5Affected Software2
Prion
Prionadded 2018/06/11 9:29 p.m.16 views

Buffer overflow

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

6.8CVSS8.5AI score0.18164EPSS
Exploits1References16Affected Software11
Debian CVE
Debian CVEadded 2018/06/11 9:0 p.m.27 views

CVE-2018-5178

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS9.2AI score0.18164EPSS
Exploits1
Debian CVE
Debian CVEadded 2018/06/11 9:0 p.m.17 views

CVE-2018-5137

A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects...

7.5CVSS8.7AI score0.01362EPSS
Exploits0
CVE
CVEadded 2018/06/11 9:0 p.m.129 views

CVE-2018-5137

CVE-2018-5137 affects Firefox for pre-59 releases. A legacy extension’s non-contentaccessible, defined resources can be loaded by an arbitrary web page using a maliciously crafted path string. The vulnerability does not affect WebExtensions. Root cause: loading defined resources from legacy exten...

7.5CVSS7.6AI score0.01362EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2018/06/11 9:0 p.m.12 views

CVE-2018-5137

A legacy extension's non-contentaccessible, defined resources can be loaded by an arbitrary web page through script. This script does this by using a maliciously crafted path string to reference the resources. Note: this vulnerability does not affect WebExtensions. This vulnerability affects...

7.7AI score0.01362EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2018/05/24 7:59 p.m.1 views

Mozilla: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS7.5AI score0.18164EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2018/05/24 7:31 p.m.2 views

Mozilla: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS7.5AI score0.18164EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2018/05/14 3:19 p.m.2 views

Mozilla: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS7.5AI score0.18164EPSS
Exploits1References5
UbuntuCve
UbuntuCveadded 2018/05/10 12:0 a.m.19 views

CVE-2018-5178

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and...

8.1CVSS7.3AI score0.18164EPSS
Exploits1References3
Mozilla
Mozillaadded 2018/05/09 12:0 a.m.506 views

Security vulnerabilities fixed in Firefox ESR 52.8 — Mozilla

Mozilla developers backported selected changes in the Skia library to the ESR52 branch of Firefox. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. A use-after-free vulnerability can occur while enumerating attributes during SVG...

9.8CVSS0.6AI score0.43031EPSS
Exploits3References10Affected Software1
CNVD
CNVDadded 2018/03/15 12:0 a.m.1 views

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2018-07085)

Mozilla Firefox browser Firefox is a free, open source browser for Windows, Linux and MacOSX platforms. An information disclosure vulnerability exists in a legacy extension in Mozilla Firefox. A remote user can send a specially crafted request to exploit the vulnerability to view potentially...

7.5CVSS8.4AI score0.01362EPSS
Exploits0References1
Rows per page
Query Builder