Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.33 views

RHEL 8 : thunderbird (RHSA-2022:6715)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6715 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fixes: Mozilla:...

8.8CVSS7.7AI score0.01342EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.25 views

RHEL 8 : firefox (RHSA-2022:6701)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6701 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.8AI score0.01342EPSS
Exploits0References15
OSV
OSV
added 2019/12/11 2:1 a.m.4 views

GHSA-V63X-XC9J-HHVQ Sandbox Breakout / Arbitrary Code Execution in safer-eval

All versions of safer-eval are vulnerable to Sandbox Escape leading to Remote Code Execution. The package fails to restrict access to the main context and is not suited to process arbitrary user input. This may allow attackers to execute arbitrary code in the system. Recommendation The package is...

9.8CVSS7.6AI score0.02574EPSS
Exploits1References5
Prion
Prion
added 2015/07/23 12:59 a.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in the V8ContextNativeHandler::GetModuleSystem function in extensions/renderer/v8contextnativehandler.cc in Google Chrome before 44.0.2403.89 allows remote attackers to inject arbitrary web script or HTML by leveraging the lack of a certain V8 context...

4.3CVSS5.1AI score0.01883EPSS
Exploits0References10Affected Software7
UbuntuCve
UbuntuCve
added 2015/07/23 12:59 a.m.29 views

CVE-2015-1286

Cross-site scripting XSS vulnerability in the V8ContextNativeHandler::GetModuleSystem function in extensions/renderer/v8contextnativehandler.cc in Google Chrome before 44.0.2403.89 allows remote attackers to inject arbitrary web script or HTML by leveraging the lack of a certain V8 context...

4.3CVSS7.3AI score0.01883EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/07/23 12:0 a.m.25 views

CVE-2015-1286

Cross-site scripting XSS vulnerability in the V8ContextNativeHandler::GetModuleSystem function in extensions/renderer/v8contextnativehandler.cc in Google Chrome before 44.0.2403.89 allows remote attackers to inject arbitrary web script or HTML by leveraging the lack of a certain V8 context...

7.5AI score0.01883EPSS
Exploits0References10
Apache Tomcat
Apache Tomcat
added 2007/03/14 12:0 a.m.49 views

Fixed in Apache Tomcat 5.5.22, 5.0.SVN

Important: Directory traversal CVE-2007-0450 The fix for this issue was insufficient. A fix was also required in the JK connector module for httpd. See CVE-2007-1860 for further information. Tomcat permits '', '%2F' and '%5C' as path delimiters. When Tomcat is used behind a proxy including, but...

5CVSS6.1AI score0.90768EPSS
Exploits2Affected Software1
Rows per page
Query Builder