Lucene search
K

808 matches found

Cvelist
Cvelist
added 2008/11/17 6:0 p.m.25 views

CVE-2008-3644

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache...

5.1AI score0.00324EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2008/11/14 12:0 a.m.22 views

Safari < 3.2 Multiple Vulnerabilities

Binary data 4754.prm...

10CVSS7.2AI score0.12988EPSS
Exploits9References14
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.35 views

Ubuntu 6.06 LTS / 6.10 / 7.04 : firefox vulnerabilities (USN-468-1)

Various flaws were discovered in the layout and JavaScript engines. By tricking a user into opening a malicious web page, an attacker could execute arbitrary code with the user's privileges. CVE-2007-2867, CVE-2007-2868 A flaw was discovered in the form autocomplete feature. By tricking a user in...

9.3CVSS8.4AI score0.07831EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.30 views

openSUSE 10 Security Update : MozillaThunderbird (MozillaThunderbird-3545)

This update brings Mozilla Thunderbird to security update version 1.5.0.12. - MFSA 2007-17 / CVE-2007-2871 : Chris Thomas demonstrated that XUL popups opened by web content could be placed outside the boundaries of the content area. This could be used to spoof or hide parts of the browser chrome...

9.3CVSS7.3AI score0.13847EPSS
Exploits1References8
Prion
Prion
added 2007/08/15 7:17 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the nodereference module in Drupal Content Construction Kit CCK before 4.7.x-1.6, and 5.x before 5.x-1.6 ,allow remote attackers to inject arbitrary web script or HTML via nodereference fields, when using 1 the plain formatter or 2 the...

4.3CVSS6.1AI score0.02275EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2007/08/15 7:0 p.m.47 views

CVE-2007-4363

CVE-2007-4363 affects the Drupal Content Construction Kit (CCK) nodereference module. The vulnerability exists in nodereference fields when using (1) the plain formatter or (2) the autocomplete text field widget without Views.module, allowing remote attackers to inject arbitrary web script or HTM...

4.3CVSS5.8AI score0.02275EPSS
Exploits0References10Affected Software1
UbuntuCve
UbuntuCve
added 2007/06/01 12:30 a.m.28 views

CVE-2007-2869

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

4.3CVSS6AI score0.01798EPSS
Exploits0References2
NVD
NVD
added 2007/06/01 12:30 a.m.18 views

CVE-2007-2869

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

4.3CVSS6.4AI score0.01798EPSS
Exploits0References31
securityvulns
securityvulns
added 2007/06/01 12:0 a.m.95 views

Mozilla Foundation Security Advisory 2007-13

Mozilla Foundation Security Advisory 2007-13 Title: Persistent Autocomplete Denial of Service Impact: Low Announced: May 30, 2007 Reporter: Marcel Products: Firefox Fixed in: Firefox 2.0.0.4 Firefox 1.5.0.12 Description Marcel reported that a malicious web page could perform a denial of service...

4.3CVSS1AI score0.01798EPSS
Exploits0
Cvelist
Cvelist
added 2007/06/01 12:0 a.m.28 views

CVE-2007-2869

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

6.3AI score0.01798EPSS
Exploits0References31
RedHat Linux
RedHat Linux
added 2007/05/31 2:47 a.m.6 views

Multiple Firefox flaws (CVE-2007-1562, CVE-2007-2867, CVE-2007-2868, CVE-2007-2869, CVE-2007-2870, CVE-2007-2871)

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

4.3CVSS6.3AI score0.0249EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/05/31 1:50 a.m.4 views

Multiple Firefox flaws (CVE-2007-1562, CVE-2007-2867, CVE-2007-2868, CVE-2007-2869, CVE-2007-2870, CVE-2007-2871)

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

4.3CVSS6.3AI score0.0249EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/05/31 1:30 a.m.4 views

Multiple Firefox flaws (CVE-2007-1562, CVE-2007-2867, CVE-2007-2868, CVE-2007-2869, CVE-2007-2870, CVE-2007-2871)

The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service persistent temporary CPU consumption via a large number of characters in a submitted form...

4.3CVSS6.3AI score0.0249EPSS
Exploits0References4
Mozilla
Mozilla
added 2007/05/30 12:0 a.m.35 views

Persistent Autocomplete Denial of Service — Mozilla

Marcel reported that a malicious web page could perform a denial of service attack against the form autocomplete feature that would persist from session to session until the malicious form data was deleted. Filling a text field with millions of characters and submitting the form will cause the...

4.3CVSS3.2AI score0.01798EPSS
Exploits0References2Affected Software1
myhack58
myhack58
added 2005/10/19 12:0 a.m.32 views

Scotty no trace CleanCache help you erase private history-vulnerability warning-the black bar safety net

In viruses and hackers to wreak havoc today, personal information security is particularly important, so that your information is not leaked out, the usual practice is to clear XP history, we can right-click on“Start”--properties--customize--clear, on the IE Properties window in Microsoft also...

6.6AI score
Exploits0
NVD
NVD
added 2005/05/02 4:0 a.m.22 views

CVE-2005-0589

The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability...

5CVSS6.3AI score0.0126EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.32 views

CVE-2005-0589

The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability...

5CVSS5.9AI score0.0126EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/04/12 12:0 a.m.22 views

Multiple Mozilla / Firefox / Thunderbird browsers bugs

Symbolic links problem, crossite XML data access, form autocomplete feature information leak, buffer overflows, data spoofing, invalid certificates handlings...

3.8AI score
Exploits0References4Affected Software3
Tenable Nessus
Tenable Nessus
added 2005/03/06 12:0 a.m.43 views

GLSA-200503-10 : Mozilla Firefox: Various vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200503-10 Mozilla Firefox: Various vulnerabilities The following vulnerabilities were found and fixed in Mozilla Firefox: Michael Krax reported that plugins can be used to load privileged content and trick the user to interact wit...

7.5CVSS6.1AI score0.20398EPSS
Exploits6References19
RedHat Linux
RedHat Linux
added 2005/03/01 7:1 p.m.4 views

security flaw

The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability...

5CVSS5.9AI score0.0126EPSS
Exploits0References4
Rows per page
Query Builder