Lucene search
K

8 matches found

EUVD
EUVD
added 2026/04/10 4:3 p.m.3 views

EUVD-2026-21450

OpenClaw before 2026.3.22 contains an authorization bypass vulnerability in interactive callback dispatch that allows non-allowlisted senders to execute action handlers. Attackers can bypass sender authorization checks by dispatching callbacks before normal security validation completes, enabling...

6.9CVSS5.9AI score0.0042EPSS
Exploits0References4
NVD
NVD
added 2026/04/07 8:16 p.m.10 views

CVE-2026-39371

RedwoodSDK is a server-first React framework. From 1.0.0-beta.50 to 1.0.5, erver functions exported from "use server" files could be invoked via GET requests, bypassing their intended HTTP method. In cookie-authenticated applications, this allowed cross-site GET navigations to trigger...

8.1CVSS0.0021EPSS
Exploits0References1
Snyk
Snyk
added 2026/01/08 8:57 p.m.3 views

Cross-site Request Forgery (CSRF)

Overview @remix-run/server-runtime is a Server runtime for Remix Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF due to the improper origin checks of UI route submissions in server-side route action handlers in Framework Mode. An attacker can execute unauthoriz...

6.9CVSS6.8AI score0.00128EPSS
Exploits0References3
seebug.org
seebug.org
added 2006/03/21 12:0 a.m.14 views

MS Internet Explorer 6.0 (script action handlers) (mshtml.dll) DoS

No description provided by source. htmlbodyimg src=http://lcamtuf.coredump.cx/photo/current/m2A.jpgfoo onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/03/21 12:0 a.m.148 views

Microsoft Internet Explorer 6 - Script Action Handlers 'mshtml.dll' Denial of Service

foo onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork...

7.4AI score
Exploits0
NVD
NVD
added 2006/03/19 11:6 a.m.22 views

CVE-2006-1273

Mozilla Firefox 1.0.7 and 1.5.0.1 allows remote attackers to cause a denial of service crash via an HTML tag with a large number of script action handlers such as onload and onmouseover, which triggers the crash when the user views the page source. NOTE: Red Hat has disputed this issue, suggestin...

7.8CVSS6.6AI score0.01576EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/03/19 11:0 a.m.28 views

CVE-2006-1273

Mozilla Firefox 1.0.7 and 1.5.0.1 allows remote attackers to cause a denial of service crash via an HTML tag with a large number of script action handlers such as onload and onmouseover, which triggers the crash when the user views the page source. NOTE: Red Hat has disputed this issue, suggestin...

6.6AI score0.01576EPSS
Exploits0References4
CVE
CVE
added 2006/03/19 11:0 a.m.55 views

CVE-2006-1273

The CVE-2006-1273 entries pertain to Mozilla Firefox 1.0.7–1.5.0.1, where a DoS could be triggered by an HTML tag containing a large number of script handlers (e.g., onload, onmouseover) when the page source is viewed. The core issue is reported as a crash in Firefox, but Red Hat and Mozilla disp...

7.8CVSS6.6AI score0.01576EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder