Lucene search
+L

3395 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox and Thunderbird

A bug in the interaction of popup notifications with WebAuthn makes it easier for attackers to trick users into granting permissions. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

6.1CVSS6.9AI score0.00534EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox and Thunderbird

A missing delay in popup notifications could have allowed an attacker to trick a user into granting permissions. This vulnerability affects Firefox 113, Firefox ESR 102.11, and Thunderbird 102.11...

8.8CVSS6.7AI score0.00731EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/20 2:32 a.m.12 views

SUSE CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References3
NVD
NVD
added 2026/05/19 2:16 p.m.16 views

CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS0.00302EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/19 2:16 p.m.9 views

CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References5
OSV
OSV
added 2026/05/19 2:16 p.m.12 views

UBUNTU-CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/19 12:30 p.m.44 views

CVE-2026-8964 Spoofing issue in the Popup Blocker component

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

0.00302EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/19 12:30 p.m.10 views

CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/19 12:30 p.m.12 views

EUVD-2026-30915

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References3
CVE
CVE
added 2026/05/19 12:30 p.m.20 views

CVE-2026-8964

The CVE-2026-8964 entry describes a spoofing issue in the Popup Blocker component. The vulnerability is stated to be fixed in Firefox 151 and Thunderbird 151, indicating a patch/upgrade is available for mitigation. The available data list the impact as high (I: High) with a network attack vector ...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References3Affected Software2
Vulnrichment
Vulnrichment
added 2026/05/19 12:30 p.m.17 views

CVE-2026-8964 Spoofing issue in the Popup Blocker component

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

5.8AI score0.00302EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/05/19 12:30 p.m.40 views

CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/19 12:30 p.m.39 views

CVE-2026-8964

Spoofing issue in the Popup Blocker component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00302EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.13 views

PT-2026-41918

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A spoofing issue exists within the Popup Blocker component. Recommendations Update to version 151...

9.8CVSS5.8AI score0.00605EPSS
Exploits0References38
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.16 views

Mozilla Firefox和Mozilla Thunderbird 安全漏洞

Mozilla Firefox and Mozilla Thunderbird are both products of the American Mozilla Foundation. Mozilla Firefox is an open-source web browser. Mozilla Thunderbird is an email client software that emerged independently from the Mozilla Application Suite. This software supports IMAP and POP email...

7.5CVSS5.8AI score0.00302EPSS
Exploits0References1
NVD
NVD
added 2026/05/18 9:16 a.m.27 views

CVE-2026-3471

Mattermost Desktop App versions =6.1 6.0.1 5.4.13.0 fail to prevent an invalid URL from loading in a pop-up window in the Mattermost Desktop App which allows a malicious server owner to repeated crash the application via calling window.open'javascript:alert';. Mattermost Advisory ID: MMSA-2026-00...

6.5CVSS0.00184EPSS
Exploits0References1
CVE
CVE
added 2026/05/18 8:45 a.m.23 views

CVE-2026-3471

Mattermost Desktop App shows a vulnerability in versions ≤6.1, 6.0.1, 5.4.13.0 where it does not sanitize an invalid URL in a pop‑up window, enabling a malicious server to repeatedly crash the application via window.open('javascript:alert()'). Root cause: improper handling of URLs in pop‑ups. Imp...

6.5CVSS5.8AI score0.00184EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/05/18 8:45 a.m.4 views

CVE-2026-3471 Opening a window with {{javascript:alert()}} as URL causes crash in the Mattermost Desktop App

Mattermost Desktop App versions =6.1 6.0.1 5.4.13.0 fail to prevent an invalid URL from loading in a pop-up window in the Mattermost Desktop App which allows a malicious server owner to repeated crash the application via calling window.open'javascript:alert';. Mattermost Advisory ID: MMSA-2026-00...

6.5CVSS6AI score0.00184EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.11 views

Mattermost Desktop App 安全漏洞

The Mattermost Desktop App is a desktop application for message communication developed by the American company Mattermost. Versions 6.1, 6.0.1, and 5.4.13.0 of the Mattermost Desktop App have security vulnerabilities. These vulnerabilities stem from a failure to prevent invalid URLs from being...

6.5CVSS5.8AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.15 views

PT-2026-40899

Name of the Vulnerable Software and Affected Versions InfusedWoo Pro versions prior to 5.1.3 Description The InfusedWoo Pro plugin for WordPress allows unauthenticated attackers to perform Arbitrary File Read via the 'popup submit' endpoint. This allows web requests to be made to arbitrary...

7.5CVSS5.9AI score0.00271EPSS
Exploits0References5
Rows per page
Query Builder