Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

17 matches found

AstraLinux
AstraLinuxadded 2025/11/01 10:54 a.m.3 views

Astra Linux – Vulnerability in Firefox

Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS using DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

8.1CVSS7.7AI score0.00274EPSS
Exploits0References3
OSV
OSVadded 2025/10/11 1:19 p.m.2 views

OESA-2025-2361 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...

9.8CVSS7.4AI score0.00417EPSS
Exploits0References14
OSV
OSVadded 2025/10/11 1:19 p.m.0 views

OESA-2025-2360 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...

9.8CVSS7.4AI score0.00417EPSS
Exploits0References14
AlpineLinux
AlpineLinuxadded 2025/07/22 9:15 p.m.5 views

CVE-2025-8036

Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability affects Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

8.1CVSS6AI score0.00274EPSS
Exploits0References6
NVD
NVDadded 2025/07/22 9:15 p.m.3 views

CVE-2025-8036

Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

8.1CVSS0.00274EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2025/07/22 8:49 p.m.2 views

CVE-2025-8036

Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS with DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

8.1CVSS5.8AI score0.00274EPSS
Exploits0References6
OpenVAS
OpenVASadded 2021/11/11 12:0 a.m.22 views

Mozilla Firefox Security Advisory (MFSA2015-127) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.5CVSS9.6AI score0.01267EPSS
Exploits0References3
OpenVAS
OpenVASadded 2021/11/11 12:0 a.m.17 views

Mozilla Firefox Security Advisory (MFSA2015-111) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.4CVSS9.5AI score0.00592EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2020/02/07 2:44 p.m.34 views

CVE-2020-5397

A flaw was found in springframework. CSRF attacks through CORS preflight requests that target Spring MVC spring-webmvc module or Spring WebFlux spring-webflux module endpoints are possible. Only non-authenticated endpoints are vulnerable because preflight requests should not include credentials a...

5.3CVSS2.2AI score0.00855EPSS
Exploits1References3
OSV
OSVadded 2020/01/17 7:15 p.m.20 views

CVE-2020-5397

Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC spring-webmvc module or Spring WebFlux spring-webflux module endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not inclu...

5.3CVSS6.8AI score0.00855EPSS
Exploits1References7
UbuntuCve
UbuntuCveadded 2020/01/17 7:15 p.m.26 views

CVE-2020-5397

Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC spring-webmvc module or Spring WebFlux spring-webflux module endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not inclu...

5.3CVSS6.4AI score0.00855EPSS
Exploits1References2
Prion
Prionadded 2020/01/17 7:15 p.m.17 views

Cross site request forgery (csrf)

Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC spring-webmvc module or Spring WebFlux spring-webflux module endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not inclu...

2.6CVSS7.1AI score0.00855EPSS
Exploits1References7Affected Software27
OSV
OSVadded 2020/01/17 7:15 p.m.0 views

UBUNTU-CVE-2020-5397

Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC spring-webmvc module or Spring WebFlux spring-webflux module endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not inclu...

5.3CVSS6.4AI score0.00855EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2020/01/17 6:50 p.m.23 views

CVE-2020-5397

Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC spring-webmvc module or Spring WebFlux spring-webflux module endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not inclu...

5.3CVSS5.7AI score0.00855EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2015/11/30 12:0 a.m.26 views

RHEL 5 / 6 / 7 : thunderbird (RHSA-2015:2519)

The remote Redhat Enterprise Linux 5 / 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2015:2519 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed web content. ...

7.5CVSS8.7AI score0.03921EPSS
Exploits0References15
OpenVAS
OpenVASadded 2015/11/07 12:0 a.m.29 views

SUSE: Security Advisory for MozillaFirefox (SUSE-SU-2015:1926-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6AI score
Exploits0References1
Kaspersky
Kasperskyadded 2015/09/22 12:0 a.m.32 views

KLA11454 Multiple vulnerabilities in SeaMonkey

Multiple vulnerabilities were found in SeaMonkey. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions and spoof user interface. Below is a complete list of vulnerabilities: 1. Multiple memory corruption vulnerabilities...

9.3CVSS10AI score0.07974EPSS
Exploits0References3
Rows per page
Query Builder