Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 4:51 a.m.3 views

SUSE CVE-2017-5085

Inappropriate implementation in Bookmarks in Google Chrome prior to 59 for iOS allowed a remote attacker who convinced the user to perform certain operations to run JavaScript on chrome:// pages via a crafted bookmark...

6.1CVSS8.6AI score0.00443EPSS
Exploits0References5
UbuntuCve
UbuntuCveadded 2018/05/11 12:0 a.m.16 views

CVE-2018-5167

The web console and JavaScript debugger do not sanitize all output that can be hyperlinked. Both will display "chrome:" links as active, clickable hyperlinks in their output. Web sites should not be able to directly link to internal chrome pages. Additionally, the JavaScript debugger will display...

4.3CVSS6.8AI score0.00646EPSS
Exploits0References3
OSV
OSVadded 2017/10/27 5:29 a.m.2 views

UBUNTU-CVE-2017-5085

Inappropriate implementation in Bookmarks in Google Chrome prior to 59 for iOS allowed a remote attacker who convinced the user to perform certain operations to run JavaScript on chrome:// pages via a crafted bookmark...

6.1CVSS6.9AI score0.00443EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2017/06/06 7:33 p.m.3 views

chromium-browser: inappropriate javascript execution on webui pages

Inappropriate implementation in Bookmarks in Google Chrome prior to 59 for iOS allowed a remote attacker who convinced the user to perform certain operations to run JavaScript on chrome:// pages via a crafted bookmark...

6.1CVSS7.4AI score0.00443EPSS
Exploits0References5
ArchLinux
ArchLinuxadded 2015/04/04 12:0 a.m.45 views

thunderbird: multiple issues

CVE-2015-0801 same-origin bypass: Mozilla developer Olli Pettay reported that while investigating Mozilla Foundation Security Advisory 2015-28, he and Mozilla developer Boris Zbarsky found an alternate way to trigger a similar vulnerability. The previously reported flaw used an issue with SVG...

7.5CVSS0.8AI score0.8537EPSS
Exploits3References10
Tenable Nessus
Tenable Nessusadded 2015/04/02 12:0 a.m.37 views

Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2550-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2550-1 advisory. Olli Pettay and Boris Zbarsky discovered an issue during anchor navigations in some circumstances. If a user were tricked in to opening a specially craft...

7.5CVSS8.6AI score0.8537EPSS
Exploits4References15
Ubuntu
Ubuntuadded 2015/04/01 2:41 p.m.73 views

USN-2550-1: Firefox vulnerabilities

Olli Pettay and Boris Zbarsky discovered an issue during anchor navigations in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin policy restrictions. CVE-2015-0801 Bobby Holley discovered that...

7.5CVSS8.8AI score0.8537EPSS
Exploits4
RedHat Linux
RedHat Linuxadded 2008/11/13 2:18 a.m.1 views

file: URIs inherit chrome privileges

Mozilla Firefox 3.x before 3.0.4 assigns chrome privileges to a file: URI when it is accessed in the same tab from a chrome or privileged about: page, which makes it easier for user-assisted attackers to execute arbitrary JavaScript with chrome privileges via malicious code in a file that has...

5.1CVSS6.1AI score0.05714EPSS
Exploits0References4
Rows per page
Query Builder