CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

Tenable Nessus•added 2025/12/18 12:0 a.m.•2 views

Mozilla Thunderbird < 2.0.0.16

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 2.0.0.16. It is, therefore, affected by a vulnerability as referenced in the mfsa2008-24 advisory. - Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and SeaMonkey before 1.1.10 allow remote...

7.5CVSS6.2AI score0.06797EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-5089

Malware in sbrugna...

4.3CVSS7.1AI score0.00236EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2011-2822

Malware in sbrugna...

4.3CVSS6.1AI score0.00384EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-15326

Malicious code in bioql PyPI...

4.3CVSS7.2AI score0.00505EPSS

Exploits1References8

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-39034

Malicious code in bioql PyPI...

5.3CVSS7.6AI score0.00207EPSS

Exploits0References6

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6133

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform domain spoofing via IDN...

6.5CVSS7.4AI score0.0079EPSS

Exploits0References2

Amazon•added 2023/09/25 12:0 a.m.•3 views

Important: firefox

Issue Overview: A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of Mozilla developers and the Mozilla Fuzzing Team reporting memory safety bugs in Firefox 102. Some of these bugs showed evidence of memory corruption, and we presume that with enough effort...

8.8CVSS9.9AI score0.00272EPSS

Exploits0

SUSE CVE•added 2023/02/15 6:0 a.m.•1 views

SUSE CVE-2010-0178

Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2, and SeaMonkey before 2.0.4, does not prevent applets from interpreting mouse clicks as drag-and-drop actions, which allows remote attackers to execute arbitrary JavaScript with Chrome privileges by loading a chrome: URL an...

7.6CVSS9.2AI score0.03519EPSS

Exploits1References6

SUSE CVE•added 2023/02/15 5:14 a.m.•1 views

SUSE CVE-2015-6779

PDFium, as used in Google Chrome before 47.0.2526.73, does not properly restrict use of chrome: URLs, which allows remote attackers to bypass intended scheme restrictions via a crafted PDF document, as demonstrated by a document with a link to a chrome://settings URL...

4.3CVSS8.8AI score0.00597EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:31 a.m.•1 views

SUSE CVE-2018-5169

If manipulated hyperlinked text with "chrome:" URL contained in it is dragged and dropped on the "home" icon, the home page can be reset to include a normally-unlinkable chrome page as one of the home page tabs. This vulnerability affects Firefox 60...

6.5CVSS8.4AI score0.00587EPSS

Exploits0References11

SUSE CVE•added 2023/02/15 4:30 a.m.•1 views

SUSE CVE-2018-6133

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name...

6.5CVSS8.7AI score0.0079EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 4:30 a.m.•1 views

SUSE CVE-2018-6163

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name...

6.5CVSS8.7AI score0.00909EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 3:34 a.m.•1 views

SUSE CVE-2022-1138

Inappropriate implementation in Web Cursor in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who had compromised the renderer process to obscure the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS6.6AI score0.00124EPSS

Exploits1References5

Cvelist•added 2022/12/22 12:0 a.m.•15 views

CVE-2022-36318

When visiting directory listings for chrome:// URLs as source text, some parameters were reflected. This vulnerability affects Firefox ESR 102.1, Firefox ESR 91.12, Firefox 103, Thunderbird 102.1, and Thunderbird 91.12...

6.5AI score0.00207EPSS

Exploits0References6

OSV•added 2022/04/05 1:15 a.m.•1 views

CVE-2022-0803

Inappropriate implementation in Permissions in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to tamper with the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS8.3AI score

Exploits0References3

OSV•added 2021/03/09 6:15 p.m.•3 views

CVE-2021-21176

Inappropriate implementation in full screen mode in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

6.5CVSS7.8AI score

Exploits0References7

OSV•added 2021/01/08 7:15 p.m.•2 views

CVE-2020-16031

Insufficient data validation in UI in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS8.2AI score

Exploits0References2

Debian CVE•added 2020/02/11 2:42 p.m.•15 views

CVE-2020-6396

Inappropriate implementation in Skia in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS5.8AI score0.01379EPSS

Exploits1

OSV•added 2019/02/28 6:29 p.m.•1 views

CVE-2018-12398

By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy CSP. This vulnerability affects Firefox 63...

6.5CVSS7.3AI score

Exploits0References6

OSV•added 2019/01/09 7:29 p.m.•1 views

CVE-2018-6166

6.5CVSS5.8AI score

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by