6 matches found
CVE-2026-55688
The AsyncHttpClient AHC library allows Java applications to easily execute HTTP requests and asynchronously process HTTP responses. In versions from 2.0.0 prior to 2.16.0 and from 3.0.0.Beta1 prior to 3.0.11, ThreadSafeCookieStore stored a cookie under the value of its Domain attribute without...
WordPress 4.7.x < 4.7.7 Multiple Vulnerabilities
According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Weak MD5-based password hashing algorithm, which makes it easier for attackers to determine cleartext values by leveraging access to the hash values. - When domain-based...
DEBIAN-CVE-2016-9263
WordPress through 4.8.2, when domain-based flashmediaelement.swf sandboxing is not used, allows remote attackers to conduct cross-domain Flash injection XSF attacks by leveraging code contained within the wp-includes/js/mediaelement/flashmediaelement.swf file...
The vulnerability of the Internet Explorer browser, which allows a violator to access information
The vulnerability of the Internet Explorer browser is related to deficiencies in the implementation of inter-domain interaction policies. Exploiting this vulnerability allows a malicious actor to obtain information from one domain and inject it into another domain...
CVE-2004-1314
Safari 1.x allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability, a different...
Netscape < 7.2 Cross-domain Window Injection
Binary data 2468.prm...