47 matches found
CVE-2026-33889
Affecting ApostropheCMS up to version 4.28.0, a stored XSS flaw exists in the @apostrophecms/color-field module. Unsanitized color values prefixed with -- bypass TinyColor validation for CSS custom properties, and launder.string() performs only type coercion, not HTML metacharacter stripping. Thi...
EUVD-2015-2803
Malware in sbrugna...
EUVD-2022-39035
Malicious code in bioql PyPI...
Rocky Linux 8 : thunderbird (RLSA-2022:5774)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:5774 advisory. - Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 102. Some of these bugs showed evidence of memory...
CVE-2022-36319
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR 102.1, Firefox ESR 91.12, Firefox 103, Thunderbird 102.1, and Thunderbird 91.12...
CVE-2022-36319
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR 102.1, Firefox ESR 91.12, Firefox 103, Thunderbird 102.1, and Thunderbird 91.12...
CVE-2022-36319
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR 102.1, Firefox ESR 91.12, Firefox 103, Thunderbird 102.1, and Thunderbird 91.12...
CVE-2022-36319
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR 102.1, Firefox ESR 91.12, Firefox 103, Thunderbird 102.1, and Thunderbird 91.12...
CVE-2022-36319
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR 102.1, Firefox ESR 91.12, Firefox 103, Thunderbird 102.1, and Thunderbird 91.12...
AlmaLinux 8 : thunderbird (5774) (ALSA-2022:5774)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:5774 advisory. - Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 102. Some of these bugs showed evidence of memory...
AlmaLinux 8 : firefox (5777) (ALSA-2022:5777)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:5777 advisory. - Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 102. Some of these bugs showed evidence of memory...
Oracle Linux 8 : thunderbird (ELSA-2022-5774)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5774 advisory. 91.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.12.0-1 - Update to 91.12.0 build1 Tenable has...
Oracle Linux 9 : firefox (ELSA-2022-5767)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5767 advisory. 91.12.0-2.0.1 - Removed Upstream references 91.12.0-1 - Update to 91.12.0 build1 Tenable has extracted the preceding description block directly from th...
Oracle Linux 9 : thunderbird (ELSA-2022-5778)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5778 advisory. 91.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Reference oracle-indexhtml within Requires...
Oracle Linux 7 : firefox (ELSA-2022-5776)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5776 advisory. 91.12.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs....
Oracle Linux 8 : firefox (ELSA-2022-5777)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5777 advisory. 91.12.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.12.0-1 - Update to 91.12...
Oracle Linux 7 : thunderbird (ELSA-2022-5773)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-5773 advisory. 91.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.12.0-1 - Update to...
Mozilla Thunderbird < 102.1
The version of Thunderbird installed on the remote Windows host is prior to 102.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-32 advisory. - Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 102. Some of...
Debian DSA-5195-1 : thunderbird - security update
The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5195 advisory. Multiple security issues were discovered in Thunderbird, which could result in spoofing. For the oldstable distribution buster, these problems have been fixe...
MGASA-2022-0271 Updated firefox packages fix security vulnerability
When visiting directory listings for chrome:// URLs as source text, some parameters were reflected CVE-2022-36318. When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed CVE-2022-36319...