chromium-browser: Use-after-free in blink.

The LocalFrame::isURLAllowed function in core/frame/LocalFrame.cpp in Blink, as used in Google Chrome before 44.0.2403.89, does not properly check for a page's maximum number of frames, which allows remote attackers to cause a denial of service invalid count value and use-after-free or possibly...

Google Chrome Blink Denial of Service Vulnerability (CNVD-2015-04882)

Blink is the United States Google Google Inc. and Norway Opens Opera Software company jointly developed a set of browser layout engine rendering engine. A security vulnerability exists in the 'LocalFrame::isURLAllowed' function in the core/frame/LocalFrame.cpp file of Blink used in versions of...

UBUNTU-CVE-2015-1278

content/browser/webcontents/webcontentsimpl.cc in Google Chrome before 44.0.2403.89 does not ensure that a PDF document's modal dialog is closed upon navigation to an interstitial page, which allows remote attackers to spoof URLs via a crafted document, as demonstrated by the alertdialog.pdf...

Free Reprintables ArticleFR Cross-Site Scripting Vulnerability

ArticleFR is an article directory and content catalog system. Multiple cross-site scripting vulnerabilities exist in Free Reprintables ArticleFR version 3.0.6, which stem from the dashboard/settings/categories/ URI not sufficiently filtering the 'name' parameter, the dashboard/settings/links/ URI...

DEBIAN-CVE-2015-5144

Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 uses an incorrect regular expression, which allows remote attackers to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an 1 email message to the EmailValidator, a ...

PYSEC-2015-10

Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 uses an incorrect regular expression, which allows remote attackers to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an 1 email message to the EmailValidator, a ...

PYSEC-2015-10

Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 uses an incorrect regular expression, which allows remote attackers to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an 1 email message to the EmailValidator, a ...

IBM Security Network Protection Cross-Site Request Forgery Vulnerability

IBM Security Network Protection is a next-generation network intrusion prevention system. A cross-site request forgery vulnerability exists in IBM Security Network Protection that allows a remote attacker to construct a malicious URI, trick the user into parsing it, and can perform malicious...

IBM Marketing Operations Catalog Traversal Vulnerability

IBM Marketing Operations formerly known as IBM Unica Marketing Operations is a suite of marketing management software from the American company IBM. The software supports streamlining of production processes, tracking of budgets and expenditures, and improved teamwork. A directory traversal...

The vulnerability of Google Chrome browser allows a perpetrator to replace data.

The android/java/src/org/chromium/chrome/browser/WebsiteSettingsPopup.java file of the Google Chrome browser contains errors related to improper restriction of URL identifiers when creating pop-up windows. As a result, attackers may be able to replace the data displayed in the pop-up windows...

JSF: XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions

It was found that Mojarra JavaServer Faces did not properly escape user-supplied content in certain circumstances. Contents of outputText tags and raw EL expressions that immediately follow script or style elements were not escaped. A remote attacker could use a specially crafted URL to execute...

UBUNTU-CVE-2015-1226

The DebuggerFunction::InitAgentHost function in browser/extensions/api/debugger/debuggerapi.cc in Google Chrome before 41.0.2272.76 does not properly restrict what URLs are available as debugger targets, which allows remote attackers to bypass intended access restrictions via a crafted extension...

Multiple Cross-Site Scripting Vulnerabilities in PHP Address Book

PHP Address Book is a simple Web-based address book , contact management application developed in PHP . PHP Address Book suffers from multiple cross-site scripting vulnerabilities that could be exploited by an attacker to execute arbitrary web script or HTML in the context of an affected site...

Drupal Global Redirect Module Open Redirect Feature Vulnerability

Drupal is an open source CMS that can be used as a content management platform for various websites. An open redirect functionality vulnerability exists in the Drupal Global Redirect module, which can be exploited to allow an attacker to redirect a user to an arbitrary website via a URL parameter...

Framework: directory traversal flaw

A directory traversal flaw was found in the way the Spring Framework sanitized certain URLs. A remote attacker could use this flaw to obtain any file on the file system that was also accessible to the process in which the Spring web application was running...

u5CMS Open Redirect Vulnerability

u5CMS is a content management system CMS based on PHP, MySQL and Apache for medium-sized websites, conferences, audit processes, PayPal payments and online surveys. The system supports WYSIWYG editor, creating survey forms and data storage. An open redirect vulnerability exists in u5CMS. A remote...

OptimalSite CMS 'display_dialog.php' Cross-Site Scripting Vulnerability

OptimalSite CMS is a content management system. A cross-site scripting vulnerability exists in OptimalSite CMS 'displaydialog.php', which can be exploited by remote attackers to construct malicious URIs and trick users into parsing them, which can be used to obtain sensitive cookies, hijack...

USN-2474-1 curl vulnerability

Andrey Labunets discovered that curl incorrectly handled certain URLs when using a proxy server. If a user or automated system were tricked into using a specially crafted URL, an attacker could possibly use this issue to inject arbitrary HTTP requests...

NYU OpenSSO Integration Redirection Vulnerability

NYU OpenSSO Integration is a system that integrates PDS and Sun OpenSSO identity management applications. A redirection vulnerability exists in NYU OpenSSO Integration 2.1 and earlier, which allows remote attackers to redirect a user to an arbitrary web site via a redirection in the url parameter...

RichFaces: Cross-site scripting due to incomplete URL sanitization

It was found that RichFaces accepted arbitrary strings included in a URL and returned them unencoded in a CSS file. A remote attacker could use this flaw to perform cross-site scripting XSS attacks against a user running a RichFaces application...