Lucene search
K

15 matches found

CNNVD
CNNVD
added 2026/04/07 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 147.0.7727.55 contained a security vulnerability. This vulnerability stemmed from insufficient policy execution in the browser’s UI, allowing remote attackers who had infiltrated the rendering process to...

4.3CVSS7.4AI score0.00191EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:57 a.m.4 views

CVE-2020-12408

When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar. This vulnerability affects Firefox 77...

6.5CVSS5.8AI score0.0083EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-4720

Malware in sbrugna...

6.5CVSS7.8AI score0.0083EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/01/23 1:48 p.m.3 views

CVE-2024-0748

A compromised content process could have updated the document URI. This could have allowed an attacker to set an arbitrary URI in the address bar or history. This vulnerability affects Firefox 122...

8.9AI score0.00368EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/23 12:0 a.m.6 views

The vulnerability of the WebShare component of the Google Chrome browser for Android allows a hacker to manipulate the URL bar content.

The vulnerability of the WebShare component of the Google Chrome browser for Android is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to manipulate the URL input using a specially created HTML page...

5CVSS5.4AI score0.00657EPSS
Exploits0References6Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/06/22 12:0 a.m.7 views

The vulnerability of the Yandex Browser lies in its lack of sufficient checks on input data, allowing a hacker to replace the values in the address bar.

The vulnerability of the Yandex Browser exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to substitute values in the URL string using the window.open function from a remote location...

7.8CVSS7.3AI score0.01051EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/22 12:0 a.m.7 views

The vulnerability of the Yandex Browser lies in its data source verification mechanism’s flaws, which allows attackers to manipulate the content of the address bar.

The vulnerability of the Yandex Browser is related to deficiencies in the mechanism for verifying the source of data. Exploiting this vulnerability allows a remote attacker to manipulate the content of the address bar...

7.5CVSS7.2AI score0.00531EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/18 12:0 a.m.8 views

The vulnerability of Google Chrome’s Navigation function, which allows a hacker to manipulate the URL bar content

The vulnerability of Google Chrome’s Navigation function is related to a lack of mechanisms for verifying the source of data. Exploiting this vulnerability allows a malicious actor to manipulate the URL field using a specially created HTML page...

7.1CVSS7.1AI score0.00793EPSS
Exploits1References16Affected Software8
BDU FSTEC
BDU FSTEC
added 2021/12/16 12:0 a.m.5 views

The vulnerability of the Omnibox address bar in Google Chrome allows a hacker to manipulate the content of the address bar using a specially created URL.

The vulnerability of the Omnibox address bar in Google Chrome is related to privilege management errors. Exploiting this vulnerability allows a malicious actor to manipulate the content of the address bar using a specially created URL...

6.5CVSS6.9AI score0.01281EPSS
Exploits0References10Affected Software6
ThreatPost
ThreatPost
added 2018/09/12 4:17 p.m.21 views

Apple Yet to Patch Safari Browser Address Bar Spoofing Flaw

A browser address bar spoofing flaw was found by researchers this week in Safari – and Apple has yet issue a patch for the flaw. Researcher Rafay Baloch on Monday disclosed two proof-of-concepts revealing how vulnerabilities in Edge browser 42.17134.1.0 and Safari iOS 11.3.1 could be abused to...

4.3CVSS6.1AI score0.06176EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2016/05/05 12:0 a.m.7 views

The vulnerability of Google Chrome browser allows a hacker to manipulate the URL string.

The vulnerability of the WebContentsImpl::FocusLocationBarByDefault function content/browser/webcontents/webcontentsimpl.cc in the Google Chrome browser exists due to improper handling of calls to certain empty pages. Exploiting this vulnerability can allow a malicious actor to manipulate the URL...

4.3CVSS6.7AI score0.01425EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2012/07/19 12:0 a.m.33 views

Ubuntu Update for firefox USN-1509-1

Ubuntu Update for Linux kernel vulnerabilities USN-1509-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN15091.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for firefox USN-1509-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

10CVSS1AI score0.05488EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.30 views

RedHat Security Advisory RHSA-2009:1431

The remote host is missing updates announced in advisory RHSA-2009:1431. SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause...

10CVSS1.4AI score0.06724EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2008/11/04 12:0 a.m.33 views

GLSA-200811-01 : Opera: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200811-01 Opera: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Opera: Opera does not restrict the ability of a framed web page to change the address associated with a different frame CVE-2008-4195. Chri...

10CVSS8.1AI score0.45729EPSS
Exploits6References15
CVE
CVE
added 2007/02/26 11:0 a.m.59 views

CVE-2007-1091

Summary (based on provided documents): CVE-2007-1091 is a vulnerability in Internet Explorer 7 that allows remote attackers to spoof the address bar and prevent users from leaving a site via onUnload Javascript handlers, enabling phishing-like attacks. The vulnerability is discussed alongside rel...

6.8CVSS6.3AI score0.24802EPSS
Exploits0References15Affected Software2
Rows per page
Query Builder