Lucene search
K

13 matches found

NVD
NVD
added 2026/06/22 4:16 p.m.11 views

CVE-2026-54265

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, an issue in the @angular/compiler package allows bypassing DOM property sanitization through the use of two-way property...

6.1CVSS0.00195EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/15 5:22 p.m.6 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the two-way property binding. An attacker can execute arbitrary JavaScript in the context of the user's browser by supplying crafted input to a sensitive DOM property bound with two-way binding syntax. Note:...

8.3CVSS5.9AI score0.00195EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Mozilla Suite And Firefox DOM Property Overrides Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13645/info Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model DOM property values. An attacker may...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/02/08 12:0 a.m.42 views

Firefox < 2.0.0.12 Multiple Vulnerabilities

The installed version of Firefox is affected by various security issues : - Several stability bugs leading to crashes which, in some cases, show traces of memory corruption - Several file input focus stealing vulnerabilities that could result in uploading of arbitrary files provided their full pa...

9.3CVSS7.6AI score0.08633EPSS
Exploits6References25
securityvulns
securityvulns
added 2007/02/15 12:0 a.m.40 views

Firefox: serious cookie stealing / same-domain bypass vulnerability

There is a serious vulnerability in Mozilla Firefox, tested with 2.0.0.1, but quite certainly affecting all recent versions. The problem lies in how Firefox handles writes to the 'location.hostname' DOM property. It is possible for a script to set it to values that would not otherwise be accepted...

Exploits0
RedHat Linux
RedHat Linux
added 2005/07/21 5:42 p.m.10 views

security flaw

Firefox before 1.0.4 and Mozilla Suite before 1.7.8 do not properly limit privileges of Javascript eval and Script objects in the calling context, which allows remote attackers to conduct unauthorized activities via "non-DOM property overrides," a variant of CVE-2005-1160...

7.5CVSS5.9AI score0.09473EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.12 views

FreeBSD : mozilla -- privilege escalation via DOM property overrides (f650d5b8-ae62-11d9-a788-0001020eed82)

A Mozilla Foundation Security Advisory reports : mozbugra4 reported several exploits giving an attacker the ability to install malicious code or steal data, requiring only that the user do commonplace actions like click on a link or open the context menu. The common cause in each case was...

5.7AI score
Exploits0References2
exploitpack
exploitpack
added 2005/05/16 12:0 a.m.12 views

Mozilla Suite And Firefox - DOM Property Overrides Code Execution

Mozilla Suite And Firefox - DOM Property Overrides Code Execution source: https://www.securityfocus.com/bid/13645/info Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model DOM...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/16 12:0 a.m.33 views

Mozilla Suite And Firefox - DOM Property Overrides Code Execution

source: https://www.securityfocus.com/bid/13645/info Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model DOM property values. An attacker may leverage this issue to execute...

7.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2005/05/12 4:0 a.m.40 views

CVE-2005-1532

Firefox before 1.0.4 and Mozilla Suite before 1.7.8 do not properly limit privileges of Javascript eval and Script objects in the calling context, which allows remote attackers to conduct unauthorized activities via "non-DOM property overrides," a variant of CVE-2005-1160...

7.5CVSS6AI score0.09473EPSS
Exploits0References5
Mozilla
Mozilla
added 2005/05/11 12:0 a.m.26 views

Privilege escalation via non-DOM property overrides — Mozilla

Additional checks were added to make sure Javascript eval and Script objects are run with the privileges of the context that created them, not the potentially elevated privilege of the context calling them in order to protect against an additional variant of MFSA 2005-41...

7AI score
Exploits0References2Affected Software2
Mozilla
Mozilla
added 2005/04/15 12:0 a.m.15 views

Privilege escalation via DOM property overrides — Mozilla

mozbugra4 reported several exploits giving an attacker the ability to install malicious code or steal data, requiring only that the user do commonplace actions like click on a link or open the context menu. The common cause in each case was privileged UI code "chrome" being overly trusting of DOM...

6.8AI score
Exploits0References3Affected Software2
FreeBSD
FreeBSD
added 2005/04/15 12:0 a.m.14 views

mozilla -- privilege escalation via DOM property overrides

A Mozilla Foundation Security Advisory reports: mozbugra4 reported several exploits giving an attacker the ability to install malicious code or steal data, requiring only that the user do commonplace actions like click on a link or open the context menu. The common cause in each case was privileg...

1.7AI score
Exploits0References1
Rows per page
Query Builder