Lucene search
+L

14 matches found

CNNVD
CNNVD
added 2026/05/13 12:0 a.m.13 views

quark-auto-save 跨站脚本漏洞

Quark-auto-save is a personal development tool by Cp0204, designed for automatic transfer of data to a Quark Network drive and management of sign-ins. Versions of quark-auto-save prior to 0.8.5 contained a cross-site scripting vulnerability. This vulnerability stemmed from the use of the v-html...

5.4CVSS5.8AI score0.00183EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/11 9:39 p.m.11 views

libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment

A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential...

8.2CVSS5.7AI score0.00254EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

RHEL 10 : libsoup3 (RHSA-2026:15968)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:15968 advisory. Libsoup is an HTTP library implementation in C. It was originally part of a SOAP Simple Object Access Protocol implementation called Soup,...

8.2CVSS5.9AI score0.00829EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.14 views

RHEL 9 : libsoup (RHSA-2026:13978)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:13978 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: libsoup: Information disclosure via cleartext...

8.2CVSS5.9AI score0.00254EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.4 views

Mozilla Firefox < 68.10.1

The version of Firefox installed on the remote Windows host is prior to 68.10.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2020-27 advisory. - A Content Provider in Firefox for Android allowed local files accessible by the browser to be read by a remote webpage, leadi...

7.4CVSS7.3AI score0.01091EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-1726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to...

6.8CVSS6.6AI score0.00732EPSS
Exploits1References3
Prion
Prion
added 2022/05/16 3:15 p.m.16 views

Design/Logic Flaw

Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...

3.5CVSS5.2AI score0.00732EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/01/17 3:15 a.m.4 views

CVE-2021-3113

Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to discover session cookies via a direct /session/list/allActiveSession request. For example, the attacker can discover the admin's cookie if the admin account happens to be logged in when the allActiveSession request occurs, a...

7.5CVSS7.1AI score0.03162EPSS
Exploits1References4
NVD
NVD
added 2019/04/18 7:29 p.m.16 views

CVE-2019-11084

GAuth 0.9.9 beta has stored XSS that shows a popup repeatedly and discloses cookies...

6.1CVSS6AI score0.00763EPSS
Exploits0References1
CVE
CVE
added 2019/04/18 6:7 p.m.44 views

CVE-2019-11084

CVE-2019-11084 concerns GAuth 0.9.9 beta, with a stored XSS vulnerability that causes a popup to appear repeatedly and discloses cookies. The available connected sources identify the issue as a stored cross-site scripting flaw affecting GAuth 0.9.9 beta, but do not provide further product version...

6.1CVSS5.9AI score0.00763EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/18 6:7 p.m.20 views

CVE-2019-11084

GAuth 0.9.9 beta has stored XSS that shows a popup repeatedly and discloses cookies...

6AI score0.00763EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/08/08 12:0 a.m.54 views

JVN#39519659: Sleipnir Mobile for Android vulnerable to arbitrary script execution

Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary script execution vulnerability. Impact If a user uses a certain function of the affected product that called by other malicious Android application, an attacker may be able to execu...

4.3CVSS6.6AI score0.01161EPSS
Exploits0
seebug.org
seebug.org
added 2008/12/23 12:0 a.m.15 views

SolarCMS 0.53.8 (Forum) Remote Cookies Disclosure Exploit

No description provided by source. ?php errorreporting0; / --------------------------------------------------------- SolarCMS 0.53.8 Forum Remote Cookies Disclosure Exploit --------------------------------------------------------- by athos - stakerathotmaildotit download on http://cms.maury91.org...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/12/22 12:0 a.m.22 views

SolarCMS 0.53.8 (Forum) Remote Cookies Disclosure Exploit

Exploit for unknown platform in category web applications ========================================================= SolarCMS 0.53.8 Forum Remote Cookies Disclosure Exploit ========================================================= ?php errorreporting0; /...

7.1AI score
Exploits0
Rows per page
Query Builder