cssfontstack.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-861959 Security Researcher geeknik Helped patch 8675 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting cssfontstack.com website an...

SUSE-SU-2019:1468-1 Security update for libcroco

This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-7960: Fixed heap overflow input: check end of input before reading a byte bsc1034481. - CVE-2017-7961: Fixed undefined behavior tknzr: support only max long rgb values bsc1034482. - CVE-2017-8834: Fixed denial ...

0303-lb3-paket (=1.0.1), 04_nodeblog (=1.0.0) +8447 more potentially affected by unknown CVE via clean-css (>=0.10.0 <=4.1.1)

clean-css NPM version =0.10.0, =0.0.1, =3.1.4, =1.0.3, =3.1.6, =1.0.1, =1.0.0, =1.0.0, =0.1.1, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-WXHQ-PM8V-CW75...

GHSA-WXHQ-PM8V-CW75 Regular Expression Denial of Service in clean-css

Version of clean-css prior to 4.1.11 are vulnerable to Regular Expression Denial of Service ReDoS. Untrusted input may cause catastrophic backtracking while matching regular expressions. This can cause the application to be unresponsive leading to Denial of Service. Recommendation Upgrade to...

Regular Expression Denial of Service in clean-css

Version of clean-css prior to 4.1.11 are vulnerable to Regular Expression Denial of Service ReDoS. Untrusted input may cause catastrophic backtracking while matching regular expressions. This can cause the application to be unresponsive leading to Denial of Service. Recommendation Upgrade to...

Shopify: HTML injection in https://interviewing.shopify.com/index.php?candidate=

https://interviewing.shopify.com/index.php?candidate= is inserting the value of candidate into the DOM without any filtering except that the equal sign can't appear in the payload, this allows attacker to injection any html in the DOM. Of course reflected XSS payloads like ...something... will be...

CVE-2019-12458

FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01...

phpBB: CSS injection via BB code tag "█████"

The input to the "█████" BBcode tag is not properly filtered. It gets converted into a CSS style attribute for a span HTML element. Quotes " are removed, so there's no way to break out of the CSS style attributed. However it is possible to arbitrarily dress the resulting span element. To illustra...

WordPress WaspThemes Visual CSS Style Editor Plugin < 7.2.1 CSRF Vulnerability

The WordPress plugin Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the...

Information Disclosure

Mozilla Thunderbird is vulnerable to information disclosure. Attackers can use a crafted CSS in an RSS feed that would leak and reveal local path strings, which may contain user name...

Roundcube Webmail < 1.3.10 Information Disclosure Vulnerability

Roundcube Webmail is prone to an information disclosure vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Cross site request forgery (csrf)

The WaspThemes Visual CSS Style Editor aka yellow-pencil-visual-theme-customizer plugin before 7.2.1 for WordPress allows ypoptionupdate CSRF, as demonstrated by use of ypremoteget to obtain admin access...

CVE-2019-11886

The WaspThemes Visual CSS Style Editor aka yellow-pencil-visual-theme-customizer plugin before 7.2.1 for WordPress allows ypoptionupdate CSRF, as demonstrated by use of ypremoteget to obtain admin access...

CVE-2019-11886

The WaspThemes Visual CSS Style Editor aka yellow-pencil-visual-theme-customizer plugin before 7.2.1 for WordPress allows ypoptionupdate CSRF, as demonstrated by use of ypremoteget to obtain admin access...

CVE-2019-11886

The CVE-2019-11886 entry concerns the WordPress plugin Yellow Pencil Visual Theme Customizer (WaspThemes Visual CSS Style Editor) versions prior to 7.2.1. The vulnerability arises from yp_option_update CSRF, demonstrated via yp_remote_get, enabling an unauthenticated attacker to obtain administra...

CVE-2019-11886

The WaspThemes Visual CSS Style Editor aka yellow-pencil-visual-theme-customizer plugin before 7.2.1 for WordPress allows ypoptionupdate CSRF, as demonstrated by use of ypremoteget to obtain admin access...

WordPress WaspThemes Visual CSS Style Editor plugin cross-site request forgery vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in the WordPress WaspThemes Visual CSS Style Editor plugin...

Fedora Update for php-Smarty2 FEDORA-2018-7adf863a47

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

Mozilla Firefox is vulnerable to use-after-free vulnerability. This is possible with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. An attacker may exploit this issue to crash the affected application,...

Denial Of Service

Thunderbird, Firefox ESR, and Firefox are vulnerable to denial of service attacks. A remote attacker could crash the system during bidirectional unicode manipulation with CSS animations leading to denial of service conditions...