Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-7119

Malware in sbrugna...

4.3CVSS9.2AI score0.01889EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.11 views

Mozilla Firefox Security Advisory (MFSA2015-121) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

4.3CVSS9.6AI score0.01889EPSS
Exploits0References3
Mageia
Mageia
added 2015/11/16 9:36 p.m.66 views

Updated iceape packages fix security vulnerabilities

Updated iceape packages fix security issues: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...

7.5CVSS10.6AI score0.0449EPSS
Exploits0References14
NVD
NVD
added 2015/11/05 5:59 a.m.15 views

CVE-2015-7187

The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: false" panel setting, which makes it easier for remote attackers to conduct cross-site scripting XSS attacks via inline JavaScript code that is executed within a third-party extension...

4.3CVSS8.5AI score0.01889EPSS
Exploits0References7
Prion
Prion
added 2015/11/05 5:59 a.m.17 views

Cross site scripting

The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: false" panel setting, which makes it easier for remote attackers to conduct cross-site scripting XSS attacks via inline JavaScript code that is executed within a third-party extension...

4.3CVSS5.9AI score0.01889EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2015/11/05 2:0 a.m.21 views

CVE-2015-7187

The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: false" panel setting, which makes it easier for remote attackers to conduct cross-site scripting XSS attacks via inline JavaScript code that is executed within a third-party extension...

8.5AI score0.01889EPSS
Exploits0References7
CVE
CVE
added 2015/11/05 2:0 a.m.113 views

CVE-2015-7187

CVE-2015-7187 arises from the Add-on SDK in Mozilla Firefox before 42.0 misinterpreting a panel setting script: false, enabling inline script execution in third‑party extensions and potentially allowing remote XSS. The vulnerability affects Firefox’s extension panel rendering and can lead to cros...

4.3CVSS8.3AI score0.01889EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2015/11/04 12:0 a.m.20 views

CVE-2015-7187

The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: false" panel setting, which makes it easier for remote attackers to conduct cross-site scripting XSS attacks via inline JavaScript code that is executed within a third-party extension...

4.3CVSS7.3AI score0.01889EPSS
Exploits0References3
Mozilla
Mozilla
added 2015/11/03 12:0 a.m.32 views

Disabling scripts in Add-on SDK panels has no effect — Mozilla

Add-on authors Jason Hamilton and Peter Arremann with AMO editor Sylvain Giroux reported a vulnerability when a panel is created using the Add-on SDK in a browser extension. Defining a panel with script: false is supposed to disable script execution but it was found that inline script would still...

4.3CVSS8.8AI score0.01889EPSS
Exploits0References3Affected Software1
Kaspersky
Kaspersky
added 2015/11/03 12:0 a.m.83 views

KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilitie...

9.8CVSS10AI score0.10238EPSS
Exploits0References4
Rows per page
Query Builder