Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 6 days ago6 views

CVE-2026-55688

The AsyncHttpClient AHC library allows Java applications to easily execute HTTP requests and asynchronously process HTTP responses. In versions from 2.0.0 prior to 2.16.0 and from 3.0.0.Beta1 prior to 3.0.11, ThreadSafeCookieStore stored a cookie under the value of its Domain attribute without...

4CVSS5.8AI score0.00179EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.77 views

WordPress 4.7.x < 4.7.7 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Weak MD5-based password hashing algorithm, which makes it easier for attackers to determine cleartext values by leveraging access to the hash values. - When domain-based...

9.8CVSS8.3AI score0.10357EPSS
Exploits1References6
OSV
OSV
added 2017/10/12 4:29 p.m.6 views

DEBIAN-CVE-2016-9263

WordPress through 4.8.2, when domain-based flashmediaelement.swf sandboxing is not used, allows remote attackers to conduct cross-domain Flash injection XSF attacks by leveraging code contained within the wp-includes/js/mediaelement/flashmediaelement.swf file...

4.7CVSS8AI score0.02552EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/01/19 12:0 a.m.7 views

The vulnerability of the Internet Explorer browser, which allows a violator to access information

The vulnerability of the Internet Explorer browser is related to deficiencies in the implementation of inter-domain interaction policies. Exploiting this vulnerability allows a malicious actor to obtain information from one domain and inject it into another domain...

5.8CVSS5.8AI score0.28206EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2004/12/22 5:0 a.m.28 views

CVE-2004-1314

Safari 1.x allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability, a different...

9.1AI score0.02364EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2004/12/17 12:0 a.m.14 views

Netscape < 7.2 Cross-domain Window Injection

Binary data 2468.prm...

7.5CVSS7.3AI score0.01727EPSS
Exploits1References2
Rows per page
Query Builder