CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

RedhatCVE•added 2026/01/09 11:2 a.m.•10 views

CVE-2007-4040

Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command...

8.8CVSS7.8AI score0.28647EPSS

Exploits3References1

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2007-4022

Malware in sbrugna...

4.3CVSS6.3AI score0.01112EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-3938

Malware in sbrugna...

4.3CVSS6.4AI score0.06673EPSS

Exploits3References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2007-4023

Malware in sbrugna...

9.8CVSS9.2AI score0.02014EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2007-3908

Malware in sbrugna...

9.3CVSS6.4AI score0.13691EPSS

Exploits0References4

RedhatCVE•added 2025/05/21 8:10 p.m.•7 views

CVE-2007-3954

Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with SeaMonkey installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a mailto URI, which are...

4.3CVSS7.4AI score0.28647EPSS

Exploits3References1

RedhatCVE•added 2025/05/21 8:10 p.m.•7 views

CVE-2007-3924

Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Netscape installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a -chrome argument to the...

9.3CVSS7.3AI score0.28647EPSS

Exploits3References1

SUSE CVE•added 2023/02/15 6:11 a.m.•4 views

SUSE CVE-2007-3670

Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a 1 FirefoxURL or 2 FirefoxHTM...

4.3CVSS8.8AI score0.28647EPSS

Exploits3References6

RedhatCVE•added 2015/10/30 10:30 a.m.•29 views

CVE-2007-4038

Argument injection vulnerability in Mozilla Firefox before 2.0.0.5, when running on systems with Thunderbird 1.5 installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a mailto URI, which...

4.3CVSS8.2AI score0.28647EPSS

Exploits3References2

RedhatCVE•added 2015/10/30 10:30 a.m.•30 views

CVE-2007-4039

Argument injection vulnerability involving Mozilla, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command line when invoking the handli...

9.8CVSS8.3AI score0.28647EPSS

Exploits3References2

seebug.org•added 2014/07/01 12:0 a.m.•26 views

Microsoft Internet Explorer and Mozilla Firefox URI Handler Command Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24837/info Microsoft Internet Explorer, Mozilla Firefox and Netscape Navigator are prone to a vulnerability that lets attackers inject commands through the 'firefoxurl' and 'navigatorurl' protocol handlers. Exploiting the...

7.1AI score

Exploits0

Tenable Nessus•added 2009/02/16 12:0 a.m.•49 views

Google Chrome < 1.0.154.48 Cross-browser Command Execution

The version of Google Chrome installed on the remote host is earlier than 1.0.154.48. Such versions are reportedly affected by a protocol- handler command-injection vulnerability that could allow an attacker to carry out cross-browser scripting attacks. %NASLMINLEVEL 70300 C Tenable Network...

4.3CVSS7.2AI score0.28647EPSS

Exploits3References2