Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 5:20 a.m.1 views

SUSE CVE-2015-2710

Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets CSS token sequence...

6.8CVSS9.2AI score0.02421EPSS
Exploits0References8
SUSE CVE
SUSE CVEadded 2023/02/15 4:48 a.m.3 views

SUSE CVE-2017-6820

rcubeutils.php in Roundcube before 1.1.8 and 1.2.x before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets CSS token sequence within an SVG element...

6.1CVSS8.2AI score0.00556EPSS
Exploits1References3
NVD
NVDadded 2016/03/09 11:59 p.m.14 views

CVE-2015-6184

The CAttrArray object implementation in Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service type confusion and memory corruption via a malformed Cascading Style Sheets CSS token sequence in conjunction with modifications to HTML...

9.3CVSS8.2AI score0.49659EPSS
Exploits0References2
Cvelist
Cvelistadded 2015/05/14 10:0 a.m.23 views

CVE-2015-2713

Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a document containing crafted text in...

9.6AI score0.01751EPSS
Exploits0References17
OSV
OSVadded 2015/05/13 12:0 a.m.0 views

UBUNTU-CVE-2015-2710

Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets CSS token sequence...

6.8CVSS7.6AI score0.02421EPSS
Exploits0References5
CVE
CVEadded 2015/03/09 12:0 a.m.82 views

CVE-2015-1228

CVE-2015-1228 affects Google Chrome (Blink) before 41.0.2272.76. The vulnerability is caused by RenderCounter::updateCounter not forcing a relayout and not initializing memory for a data structure, which can be triggered by a crafted CSS token sequence. The result is a denial of service (applicat...

7.5CVSS6.7AI score0.01073EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2014/12/15 5:27 p.m.24 views

CVE-2014-8967

Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted HTML document in conjunction with a Cascading Style Sheets CSS token sequence specifying the run-in value for the display property, leading to improper CElement reference...

7AI score0.29876EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2011/01/14 4:0 p.m.22 views

CVE-2011-0473

Removed by vendor...

10CVSS6.7AI score0.02636EPSS
Exploits0
OSV
OSVadded 2010/11/22 1:0 p.m.1 views

UBUNTU-CVE-2010-3821

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly handle the :first-letter pseudo-element in a Cascading Style Sheets CSS token sequence, which allows remote attackers to execute arbitrary code or cause a denial of...

9.3CVSS6.2AI score0.02415EPSS
Exploits0References2
Rows per page
Query Builder