DEBIAN-CVE-2026-44496

Axios is a promise based HTTP client for the browser and Node.js. Axios versions before 0.32.0 on the 0.x line and before 1.16.0 on the 1.x line build a regular expression from the configured XSRF cookie name without escaping regex metacharacters. In standard browser environments, an attacker who...

EUVD-2026-36259

Axios is a promise based HTTP client for the browser and Node.js. Axios versions before 0.32.0 on the 0.x line and before 1.16.0 on the 1.x line build a regular expression from the configured XSRF cookie name without escaping regex metacharacters. In standard browser environments, an attacker who...

EUVD-2021-0749

Malware in sbrugna...

CVE-2025-1088 Very long unicode dashboard title or panel name can hang the frontend

In Grafana, an excessively long dashboard title or panel name will cause Chromium browsers to become unresponsive due to Improper Input Validation vulnerability in Grafana. This issue affects Grafana: before 11.6.2 and is fixed in 11.6.2 and higher...

SUSE CVE-2024-10466

By sending a specially crafted push message, a remote server could have hung the parent process, causing the browser to become unresponsive. This vulnerability affects Firefox 132, Firefox ESR 128.4, Thunderbird 128.4, and Thunderbird 132...

CVE-2021-21391

CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the following npm packages: ckeditor5-engine, ckeditor5-font, ckeditor5-image, ckeditor5-list, ckeditor5-markdown-gfm, ckeditor5-media-embed, ckeditor5-paste-from-office, and ckeditor5-widget. Following an internal audit, a regular...

Regular expression Denial of Service in multiple packages

Impact A regular expression denial of service ReDoS vulnerability has been discovered in multiple CKEditor 5 packages. The vulnerability allowed to abuse particular regular expressions, which could cause a significant performance drop resulting in a browser tab freeze. It affects all users using...

Regular Expression Denial of Service

Overview In affected versions of @ckeditor/ckeditor5-markdown-gfm a regular expression denial of service ReDoS vulnerability has been discovered. Impact The vulnerability allowed to abuse a link recognition regular expression, which could cause a significant performance drop resulting in a browse...

CKEditor Resource Management Error Vulnerability

CKEditor is an open source, web-based text editor. A resource management error vulnerability exists in CKEditor 5 that allows misuse of link-recognizing regular expressions to cause the browser tab to freeze. The following products and versions are affected: CKEditor 5 Markdown plugin at version ...

UBUNTU-CVE-2017-5419

If a malicious site repeatedly triggers a modal authentication prompt, eventually the browser UI will become non-responsive, requiring shutdown through the operating system. This is a denial of service DOS attack. This vulnerability affects Firefox 52 and Thunderbird 52...

Hand of Thief Linux Banking Trojan Not Ready For Primetime

Upon further examination, a new banking Trojan variant may not be as commercially viable as it was thought to be. Researchers at RSA Security have peeled back the layers this week on the Hand of Thief banking Trojan, a piece of malware that made headlines over the summer after it was thought to b...

Playstation 3 Browser & Firmware Freeze DoS Vulnerability

Document Title: =============== Playstation 3 Browser & Firmware Freeze DoS Vulnerability Release Date: ============= 2011-06-18 Vulnerability Laboratory ID VL-ID: ==================================== 187 Abstract Advisory Information: ============================== Vulnerability-Lab Team...

Microsoft Internet Explorer Denial of Service Vulnerability - Apr09

This host is installed with Internet Explorer and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: secpodmsiedosvulnapr09.nasl 6527 2017-07-05 05:56:34Z cfischer $ Microsoft Internet Explorer Denial of Service Vulnerability - Apr09 Authors: Sharath S Copyright: Copyrig...

DoS vulnerabilities in Firefox, Internet Explorer, Opera and Chrome

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Denial of Service уязвимостях в браузерах Mozilla Firefox, Internet Explorer, Opera та Google Chrome. Данную атаку я назвал DoS через ифреймы DoS via iframes attack. И она относится к типу DoS http://websecurity.com.ua/2550/ через потребление...

Opera 9.50 beta and prior remote DoS (freeze)

Name : Opera 9.50 beta / 9.24 Remote DoS Type : Remote DoS Credits: Gynvael Coldwind of Vexillium & Simey Impact : Low Short description Opera is vulnerable to a remote DoS attack, using spacially crafted BMP files, that causes the browser to freeze for a short amount of time around 4 minutes on...

[Opera 7] Five DoS codes on general web sites

--------------------------------------------------------------------------------- TITLE :Opera 7 Five DoS codes on general web sites -= Fastest browser on earth, Fastest crash on earth too =- PRODUCT : Opera for Windows VERSIONS : 7.11b build 2887 7.11 build 2880 7.10 build 2840 7.03 build 2670...

Opera 7 - Denial of Service

source: https://www.securityfocus.com/bid/8066/info Opera has been reported to be prone to five denial of service vulnerabilities. These issues can be triggered when the browser attempts to interpret a document with malformed code. Exploitation could cause the browser to terminate or freeze. This...

Opera 7 - Denial of Service

Opera 7 - Denial of Service source: https://www.securityfocus.com/bid/8066/info Opera has been reported to be prone to five denial of service vulnerabilities. These issues can be triggered when the browser attempts to interpret a document with malformed code. Exploitation could cause the browser ...

msie.5.0.javascript.dos.txt

Date: Mon, 31 May 1999 16:18:02 GMT From: THR - To: [email protected] Subject: Exploit in Internet Explorer 5.0 Hi everyone! I have found a bug which will freeze Internet Explorer 5.0 I know that there are many bugs that will crasch browsers but what makes this one special is the following: In...