PT-2025-52367

Name of the Vulnerable Software and Affected Versions Vega affected versions not specified Description An issue exists where improper input neutralization during web page generation allows an authenticated user to embed a malicious script in content served to web browsers. This results in...

CVE-2025-62780

changedetection.io is a free open source web page change detection tool. A Stored Cross Site Scripting is present in changedetection.io Watch update API in versions prior to 0.50.34 due to insufficient security checks. Two scenarios are possible. In the first, an attacker can insert a new watch...

EUVD-2011-4605

Malware in sbrugna...

EUVD-2011-2610

Malware in sbrugna...

WordPress plugin Bold Page Builder 跨站脚本漏洞

WordPress Bold Page Builder is a free and open source page builder plugin that allows users to quickly create custom page layouts through a drag and drop interface without writing code. WordPress Bold Page Builder suffers from a cross-site scripting vulnerability that originates from improper inp...

CVE-2011-2612

Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service application crash via unknown content on a web page, as demonstrated by progorod.ru...

SUSE CVE-2011-2616

Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service memory consumption via unknown content on a web page, as demonstrated by test262.ecmascript.org...

SUSE CVE-2011-2637

Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service application crash via unknown content on a web page, as demonstrated by futura-sciences.com, seoptimise.com, and mitosyfraudes.org...

SUSE CVE-2011-4685

Dragonfly in Opera before 11.60 allows remote attackers to cause a denial of service application crash via unspecified content on a web page, as demonstrated by forbes.com...

SUSE CVE-2011-4687

Opera before 11.60 allows remote attackers to cause a denial of service CPU and memory consumption via unspecified content on a web page, as demonstrated by a page under the cisco.com home page...

Mozilla Firefox Memory Corruption Vulnerability (CNVD-2020-60333)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A memory corruption vulnerability exists in Mozilla Firefox's handling of WEB page content, which allows remote attackers to exploit the vulnerability by submitting a special WEB request that the user ...

Real-Time Phishing Protections

In my previous blogs, I wrote about how phishing is no longer just an email problem, how the industrialization of phishing is being driven by the easy availability and low cost of phishing toolkits, and how current phishing defenses are being bypassed by attackers. In this post, I'm going to...

The vulnerability of Microsoft Edge browser allows a hacker to replace the content of a web page.

The vulnerability of Microsoft Edge exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to replace the content of a web page using a specially crafted website...

PT-2016-2968 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge affected versions not specified Description: The issue is due to insufficient input validation in Microsoft Edge, allowing a remote attacker to potentially tamper with web page content using a specially crafted website...

Opera Multiple Vulnerabilities - March12 (MacOSX)

The host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodoperamultvulnmar12macosx.nasl 5940 2017-04-12 09:02:05Z teissa $ Opera Multiple Vulnerabilities - March12 MacOSX Authors: Rachana Shetty Copyright: Copyright c 2012 SecPod,...

Web page content may overlap the address field – Opera Security Advisories

The browser’s user interface contains several pieces of security information. To preserve this information correctly, web page content should not be able to display over the user interface. Certain styling can cause Opera to allow the content to be displayed outside the page, over the address...

Web page content may overlap the address field

The browser's user interface contains several pieces of security information. To preserve this information correctly, web page content should not be able to display over the user interface. Certain styling can cause Opera to allow the content to be displayed outside the page, over the address...

Web page content can display misleading security information – Opera Security Advisories

Dialogs such as the security information dialog and download dialog are displayed over the top of the webpage content. In some cases, webpage content will be incorrectly displayed on top of the dialogs, or over parts of the dialogs. This content can then display misleading security information,...

MoniWiki 1.01.1 - Wiki.php Cross-Site Scripting

MoniWiki 1.01.1 - Wiki.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11516/info MoniWiki is reported prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied URI input before including it in dynamic web page content. This issue could...