Lucene search
K

38 matches found

Packet Storm
Packet Storm
added 2016/11/04 12:0 a.m.46 views

Microsoft Internet Explorer 10 MSHTML CElement::GetPlainTextInScope Out-Of-Bounds Read

Throughout November, I plan to release details on vulnerabilities I found in web-browsers which I've not released before. This is the third entry in that series. The below information is also available on my blog at http://blog.skylined.nl/20161103001.html. There you can find a repro that trigger...

Exploits0
OSV
OSV
added 2014/04/25 2:15 p.m.3 views

UBUNTU-CVE-2012-4230

The bbcode plugin in TinyMCE 3.5.8 does not properly enforce the TinyMCE security policy for the 1 encoding directive and 2 validelements attribute, which allows attackers to conduct cross-site scripting XSS attacks via application-specific vectors, as demonstrated using a textarea element...

4.3CVSS7AI score0.01198EPSS
Exploits2References7
UbuntuCve
UbuntuCve
added 2014/04/25 2:15 p.m.19 views

CVE-2012-4230

The bbcode plugin in TinyMCE 3.5.8 does not properly enforce the TinyMCE security policy for the 1 encoding directive and 2 validelements attribute, which allows attackers to conduct cross-site scripting XSS attacks via application-specific vectors, as demonstrated using a textarea element...

4.3CVSS7AI score0.01198EPSS
Exploits2References6
Prion
Prion
added 2014/04/25 2:15 p.m.19 views

Cross site scripting

The bbcode plugin in TinyMCE 3.5.8 does not properly enforce the TinyMCE security policy for the 1 encoding directive and 2 validelements attribute, which allows attackers to conduct cross-site scripting XSS attacks via application-specific vectors, as demonstrated using a textarea element...

4.3CVSS5.9AI score0.01198EPSS
Exploits2References6Affected Software1
OpenVAS
OpenVAS
added 2012/06/21 12:0 a.m.22 views

Opera Multiple Denial of Service Vulnerabilities - June12 (Linux)

The host is installed with Opera and is prone to multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultdosvulnjune12lin.nasl 6018 2017-04-24 09:02:24Z teissa $ Opera Multiple Denial of Service Vulnerabilities - June12 Linux Authors: Sooraj KS Copyright: Copyright ...

5CVSS6.4AI score0.01218EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2012/06/21 12:0 a.m.27 views

Opera Multiple Denial of Service Vulnerabilities - June12 (Mac OS X)

The host is installed with Opera and is prone to multiple denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultdosvulnjune12macosx.nasl 5912 2017-04-10 09:01:51Z teissa $ Opera Multiple Denial of Service Vulnerabilities - June12 Mac OS X Authors: Sooraj KS Copyright:...

5CVSS0.01218EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2012/06/21 12:0 a.m.21 views

Opera Multiple Denial of Service Vulnerabilities (Jun 2012) - Mac OS X

Opera is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.01218EPSS
Exploits1References1
Prion
Prion
added 2012/06/14 7:55 p.m.11 views

Buffer overflow

Opera before 12.00 Beta allows remote attackers to cause a denial of service application hang via an absolutely positioned wrap=off TEXTAREA element located next to an "overflow: auto" block element...

5CVSS7AI score0.01218EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2012/01/03 7:0 p.m.20 views

CVE-2011-5048

Multiple cross-site scripting XSS vulnerabilities in IBM Web Experience Factory aka WEF, formerly WebSphere Portlet Factory 7.0 and 7.0.1 allow remote attackers to inject arbitrary web script or HTML via a 1 text INPUT element or 2 TEXTAREA element, related to an interaction between Smart Refresh...

5.6AI score0.01269EPSS
Exploits0References6
NVD
NVD
added 2011/03/01 11:0 p.m.19 views

CVE-2011-1121

Integer overflow in Google Chrome before 9.0.597.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a TEXTAREA element...

7.5CVSS7.3AI score0.01977EPSS
Exploits2References11
Prion
Prion
added 2011/03/01 11:0 p.m.16 views

Integer overflow

Integer overflow in Google Chrome before 9.0.597.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a TEXTAREA element...

7.5CVSS7.8AI score0.01977EPSS
Exploits2References11Affected Software4
UbuntuCve
UbuntuCve
added 2011/03/01 11:0 p.m.21 views

CVE-2011-1121

Integer overflow in Google Chrome before 9.0.597.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a TEXTAREA element...

7.5CVSS7.2AI score0.01977EPSS
Exploits2References1
Cvelist
Cvelist
added 2011/03/01 10:0 p.m.26 views

CVE-2011-1121

Integer overflow in Google Chrome before 9.0.597.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a TEXTAREA element...

8.9AI score0.01977EPSS
Exploits2References11
CVE
CVE
added 2011/03/01 10:0 p.m.78 views

CVE-2011-1121

CVE-2011-1121 concerns Google Chrome prior to 9.0.597.107. The issue is an integer overflow in a TEXTAREA-related path, allowing a remote attacker to trigger a denial of service and potentially other impact. Affected product: Google Chrome (pre-9.0.597.107); root cause: integer overflow in a comp...

7.5CVSS8.8AI score0.01977EPSS
Exploits2References11Affected Software1
Debian CVE
Debian CVE
added 2011/03/01 10:0 p.m.28 views

CVE-2011-1121

Removed by vendor...

7.5CVSS8.4AI score0.01977EPSS
Exploits2
Prion
Prion
added 2010/06/11 7:30 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors involving HTML in a TEXTAREA element...

4.3CVSS5.4AI score0.02958EPSS
Exploits0References17Affected Software1
UbuntuCve
UbuntuCve
added 2010/06/11 7:30 p.m.31 views

CVE-2010-1762

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors involving HTML in a TEXTAREA element...

4.3CVSS6AI score0.02958EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2010/06/11 7:0 p.m.25 views

CVE-2010-1762

Removed by vendor...

4.3CVSS6.6AI score0.02958EPSS
Exploits0
Rows per page
Query Builder