Lucene search
K

4 matches found

Prion
Prion
added 2011/09/08 6:55 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Sage add-on 1.3.10 and earlier for Firefox allows remote attackers to inject arbitrary web script or HTML via a crafted feed, a different vulnerability than CVE-2009-4102...

4.3CVSS5.8AI score0.0339EPSS
Exploits1References2Affected Software1
Debian
Debian
added 2009/12/15 11:55 a.m.22 views

[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing

------------------------------------------------------------------------ Debian Security Advisory DSA-1951-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 15, 2009 http://www.debian.org/security/faq -...

9.3CVSS5.6AI score0.0339EPSS
Exploits1
securityvulns
securityvulns
added 2009/12/15 12:0 a.m.64 views

[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1951-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 15, 2009 http://www.debian.org/security/faq -...

9.3CVSS0.7AI score0.0339EPSS
Exploits1
CVE
CVE
added 2009/11/28 11:0 a.m.78 views

CVE-2009-4102

The CVE-2009-4102 entry concerns the Sage Firefox extension (1.4.3 and earlier) which processes feed descriptions with chrome privileges, enabling remote command execution and cross-domain scripting via crafted RSS/Atom feeds. Affected versions include Sage prior to 1.4.6; Debian’s advisory and J...

9.3CVSS7AI score0.0339EPSS
Exploits1References9Affected Software2
Rows per page
Query Builder