Lucene search
+L

96 matches found

seebug
seebug
added 2014/07/01 12:0 a.m.24 views

Netscape Enterprise Server 3.51/3.6 JHTML View Source Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/559/info Netscape Enterprise Server 3.51 and above includes a search engine by default. The results it generates can be tailored using various configuration files, and one of the options is whether or not the full text of...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.10 views

Microsoft Indexing Services for Windows 2000/NT 4.0 .htw Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1861/info A cross-site scripting vulnerability has been reported in Microsoft Indexing Services for Windows 2000/NT4 and its handling of the .htw extension. If a user inadvertantly opened a hostile link through a browser ...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.13 views

Microsoft Internet Explorer 5 window.open Search Pane Cross-Zone Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9798/info A vulnerability has been reported in Microsoft Internet Explorer that could enable unauthorized access by malicious scripts and Active Content to document properties across different Security Zones and foreign...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.15 views

Microsoft Internet Explorer 6.0 window.open Media Bar Cross-Zone Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9769/info It has been reported that Microsoft Internet Explorer may be prone to a cross-zone scripting vulnerability that could ultimately lead to execution of malicious script code and Active Content in the context of th...

7.1AI score
Exploits0
nvd
nvd
added 2013/12/21 2:22 p.m.18 views

CVE-2013-4065

Cross-site scripting XSS vulnerability in iNotes in IBM Domino 8.5.x before 8.5.3 FP6 and 9.0.x before 9.0.1, when ultra-light mode is enabled, allows remote attackers to inject arbitrary web script or HTML via active content in an e-mail message, aka SPR TCLE98ZKRP...

2.6CVSS5.5AI score0.00895EPSS
Exploits0References2
prion
prion
added 2013/12/21 2:22 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in iNotes in IBM Domino 8.5.x before 8.5.3 FP6 and 9.0.x before 9.0.1, when ultra-light mode is enabled, allows remote attackers to inject arbitrary web script or HTML via active content in an e-mail message, aka SPR TCLE98ZKRP...

2.6CVSS6AI score0.00895EPSS
Exploits0References2Affected Software2
cert
cert
added 2013/10/30 12:0 a.m.47 views

Joomla! Media Manager allows arbitrary file upload and execution

Overview An authenticated attacker may be able to upload active content to websites running older versions of Joomla. Description CWE-434: Unrestricted Upload of File with Dangerous Type A vulnerability has been discovered in older versions of the Joomla! content management software that allow an...

6.8CVSS6AI score0.48191EPSS
Exploits5References8
ubuntucve
ubuntucve
added 2013/03/28 12:18 p.m.14 views

CVE-2013-0926

Google Chrome before 26.0.1410.43 does not properly handle active content in an EMBED element during a copy-and-paste operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site...

6.8CVSS5.9AI score0.0111EPSS
Exploits0References6
prion
prion
added 2013/03/28 12:18 p.m.30 views

Code injection

Google Chrome before 26.0.1410.43 does not properly handle active content in an EMBED element during a copy-and-paste operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site...

6.8CVSS6.8AI score0.0111EPSS
Exploits0References11Affected Software1
cvelist
cvelist
added 2013/03/28 10:0 a.m.23 views

CVE-2013-0926

Google Chrome before 26.0.1410.43 does not properly handle active content in an EMBED element during a copy-and-paste operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site...

6AI score0.0111EPSS
Exploits0References11
nvd
nvd
added 2012/08/26 7:55 p.m.20 views

CVE-2010-5190

The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.2.1 allows remote attackers to bypass JavaScript detection via HTML entities...

5CVSS6.6AI score0.01431EPSS
Exploits0References1
prion
prion
added 2012/08/26 7:55 p.m.17 views

Design/Logic Flaw

The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.2.1 allows remote attackers to bypass JavaScript detection via HTML entities...

5CVSS7.1AI score0.01431EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2012/08/26 7:0 p.m.25 views

CVE-2010-5190

The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.2.1 allows remote attackers to bypass JavaScript detection via HTML entities...

6.6AI score0.01431EPSS
Exploits0References1
cve
cve
added 2012/08/26 7:0 p.m.45 views

CVE-2010-5190

Technical details about CVE-2010-5190 are not publicly provided in the connected documents. The available sources reiterate the same description. Monitor for updated advisories to obtain concrete product/version, impact, or remediation information.

5CVSS6.8AI score0.01431EPSS
Exploits0References1Affected Software16
symantec
symantec
added 2012/06/12 12:0 a.m.32 views

Microsoft Internet Explorer CVE-2012-1879 'insertAdjacentText()' Method Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Internet...

9.3CVSS7.1AI score0.19579EPSS
Exploits1Affected Software1
symantec
symantec
added 2012/06/12 12:0 a.m.22 views

Microsoft Internet Explorer Scrolling Events Cross Domain Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability. An attacker can exploit this issue to view content from a browser window in another domain or security zone. This may allow the attacker to obtain sensitive information or aid in further...

7AI score
Exploits0Affected Software1
symantec
symantec
added 2011/10/11 12:0 a.m.29 views

Microsoft Internet Explorer 'SwapNode()' CVE-2011-2000 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions. Technologies Affected Avaya Aur...

9.3CVSS7AI score0.18886EPSS
Exploits1References1Affected Software6
symantec
symantec
added 2011/08/09 12:0 a.m.19 views

Microsoft Internet Explorer Shift JIS Character Encoding Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability. An attacker can exploit this issue to access local files or content from a browser window in another domain or security zone. This may allow the attacker to obtain sensitive information that m...

6.8AI score
Exploits0Affected Software6
symantec
symantec
added 2010/12/14 12:0 a.m.29 views

Microsoft Internet Explorer CVE-2010-3342 Cross Domain Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability because the application fails to properly enforce the same-origin policy. An attacker can exploit this issue to access content from a browser window in another domain or security zone. This may...

4.3CVSS6.2AI score0.13615EPSS
Exploits0Affected Software6
symantec
symantec
added 2010/08/10 12:0 a.m.680 views

Microsoft Internet Explorer Table Element Use After Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks will cause denial-of-service conditions. Technologies Affected Avaya Aura...

7.8AI score
Exploits0Affected Software5
Rows per page
Query Builder