CVE-2026-13676

fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode IDN hostnames for HTTP-family URLs. The IDN conversion path calls a helper that does not exist on the global URL constructor, silently leaving the host in its original Unicode form while normalize and equal still return...

CVE-2011-0244

WebKit in Apple Safari before 5.0.6 allows user-assisted remote attackers to read arbitrary files via vectors related to improper canonicalization of URLs within RSS feeds...

EUVD-2010-2121

Malware in sbrugna...

EUVD-2007-1756

Malware in sbrugna...

EUVD-2011-0270

Malware in sbrugna...

CVE-2012-3695

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML by leveraging improper URL canonicalization during the handling of the location.href property...

CVE-2012-3695

CVE-2012-3695 corresponds to a Cross-site scripting (XSS) vulnerability in WebKit used by Apple Safari before version 6.0. The issue arises from improper URL canonicalization during handling of the location.href property, enabling remote attackers to inject arbitrary web script or HTML. The provi...

CVE-2012-3695

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML by leveraging improper URL canonicalization during the handling of the location.href property...

CVE-2011-0244

WebKit in Apple Safari before 5.0.6 allows user-assisted remote attackers to read arbitrary files via vectors related to improper canonicalization of URLs within RSS feeds...

Google Chrome multiple vulnerabilities - June 10

The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnjun10.nasl 5306 2017-02-16 09:00:16Z teissa $ Google Chrome multiple vulnerabilities - June 10 Authors: Madhuri D Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Google Chrome Multiple Vulnerabilities (Jun 2010)

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-2105

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors...

CVE-2010-2105

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors...

CVE-2010-2105

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors...

CVE-2010-2105

CVE-2010-2105 affects Google Chrome up to version 5.0.375.55. The issue stems from Chrome not properly following Safe Browsing URL canonicalization requirements, with unspecified impact and remote attack vectors. Affected product is Chrome; root cause tied to Safe Browsing canonicalization. Remed...

CVE-2008-2665

CVE-2008-2665: PHP 5.2.6 and earlier contains a directory traversal vulnerability in the posix_access function. An attacker can use a .. in an HTTP URL to bypass safe_mode restrictions, with the URL being canonicalized to a local filename after the safe_mode check has executed. The description ex...

Design/Logic Flaw

Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / slash characters in the URL...

CVE-2007-1762

Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / slash characters in the URL...

CVE-2007-1762

Summary : CVE-2007-1762 affects Mozilla Firefox 2.0.0.1–2.0.0.3. The issue is that Firefox does not canonicalize URLs before checking them against the phishing site blacklist, enabling a remote attacker to bypass phishing protection by using multiple slashes in the URL. Impact (as stated) : Phish...

CVE-2007-1762

Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / slash characters in the URL...