Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 1:34 p.m.8 views

CVE-2020-26239

Scratch Addons is a WebExtension that supports both Chrome and Firefox. Scratch Addons before version 1.3.2 is vulnerable to DOM-based XSS. If the victim visited a specific website, the More Links addon of the Scratch Addons extension used incorrect regular expression which caused the HTML-escape...

7.6CVSS6.7AI score0.01016EPSS
Exploits0
NVD
NVD
added 2020/11/23 7:15 p.m.17 views

CVE-2020-26239

Scratch Addons is a WebExtension that supports both Chrome and Firefox. Scratch Addons before version 1.3.2 is vulnerable to DOM-based XSS. If the victim visited a specific website, the More Links addon of the Scratch Addons extension used incorrect regular expression which caused the HTML-escape...

7.6CVSS7.4AI score0.01016EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/11/23 7:5 p.m.38 views

CVE-2020-26239 Cross-Site Scripting in Scratch browser addons

Scratch Addons is a WebExtension that supports both Chrome and Firefox. Scratch Addons before version 1.3.2 is vulnerable to DOM-based XSS. If the victim visited a specific website, the More Links addon of the Scratch Addons extension used incorrect regular expression which caused the HTML-escape...

7.6CVSS7.5AI score0.01016EPSS
Exploits0References4
CVE
CVE
added 2020/11/23 7:5 p.m.42 views

CVE-2020-26239

Scratch Addons for Chrome/Firefox is affected by a DOM-based XSS due to an incorrect regular expression in the More Links addon, which unescaped HTML-escaped values when a user visits a specific website. This vulnerability affects versions before 1.3.2; version 1.3.2 fixes the issue and browsers ...

7.6CVSS5.7AI score0.01016EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder