Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2022/02/15 10:36 a.m.6 views

Mozilla: Sandboxed iframes could have executed script if the parent appended elements

The Mozilla Foundation Security Advisory describes this flaw as: If a document created a sandboxed iframe without allow-scripts and subsequently appended an element to the iframe's document that, for example, had a JavaScript event handler - the event handler would have run despite the iframe's...

9.6CVSS7.3AI score0.00743EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/02/14 8:50 a.m.3 views

Mozilla: Sandboxed iframes could have executed script if the parent appended elements

The Mozilla Foundation Security Advisory describes this flaw as: If a document created a sandboxed iframe without allow-scripts and subsequently appended an element to the iframe's document that, for example, had a JavaScript event handler - the event handler would have run despite the iframe's...

9.6CVSS7.3AI score0.00743EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/02/14 8:46 a.m.2 views

Mozilla: Sandboxed iframes could have executed script if the parent appended elements

The Mozilla Foundation Security Advisory describes this flaw as: If a document created a sandboxed iframe without allow-scripts and subsequently appended an element to the iframe's document that, for example, had a JavaScript event handler - the event handler would have run despite the iframe's...

9.6CVSS7.3AI score0.00743EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/02/14 8:34 a.m.4 views

Mozilla: Sandboxed iframes could have executed script if the parent appended elements

The Mozilla Foundation Security Advisory describes this flaw as: If a document created a sandboxed iframe without allow-scripts and subsequently appended an element to the iframe's document that, for example, had a JavaScript event handler - the event handler would have run despite the iframe's...

9.6CVSS7.3AI score0.00743EPSS
Exploits0References6
OSV
OSV
added 2022/02/09 12:0 a.m.3 views

UBUNTU-CVE-2022-22759

If a document created a sandboxed iframe without allow-scripts, and subsequently appended an element to the iframe's document that e.g. had a JavaScript event handler - the event handler would have run despite the iframe's sandbox. This vulnerability affects Firefox 97, Thunderbird 91.6, and...

9.6CVSS6.8AI score0.00743EPSS
Exploits0References6
Rows per page
Query Builder