CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-10895

Malware in sbrugna...

6.1CVSS7.7AI score0.00255EPSS

Exploits0References7

RedhatCVE•added 2025/05/22 9:18 p.m.•4 views

CVE-2021-23974

The DOMParser API did not properly process '' elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer. This vulnerability affects Firefox 86...

6.1CVSS6AI score0.00255EPSS

Exploits0References1

Prion•added 2023/10/19 10:15 p.m.•11 views

Cross site scripting

TinyMCE is an open source rich text editor. A mutation cross-site scripting mXSS vulnerability was discovered in TinyMCE’s core undo and redo functionality. When a carefully-crafted HTML snippet passes the XSS sanitisation layer, it is manipulated as a string by internal trimming functions before...

5.8CVSS5.7AI score0.01282EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2023/10/19 9:18 p.m.•17 views

CVE-2023-45818 Cross-site Scripting vulnerability in TinyMCE undo/redo, getContent API, resetContent API, and Autosave plugin

6.1CVSS5.2AI score0.01282EPSS

Exploits0References5

Tenable Nessus•added 2021/03/23 12:0 a.m.•60 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-4756-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4756-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker...

8.8CVSS7.4AI score0.01222EPSS

Exploits1References11

UbuntuCve•added 2021/02/26 2:15 a.m.•29 views

CVE-2021-23974

The DOMParser API did not properly process '' elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer. This vulnerability affects Firefox 86...

6.1CVSS6.8AI score0.00255EPSS

Exploits0References5

CVE•added 2021/02/26 1:51 a.m.•157 views

CVE-2021-23974

CVE-2021-23974 affects Mozilla Firefox earlier than version 86. The root cause is improper handling of elements by the DOMParser API, enabling a mXSS vector that could bypass HTML sanitizers. Affected/related advisories (e.g., MFSA2021-07) confirm the DOMParser issue among Firefox vulnerabilitie...

6.1CVSS6.3AI score0.00255EPSS

Exploits0References3Affected Software1

Debian CVE•added 2021/02/26 1:51 a.m.•22 views

CVE-2021-23974

The DOMParser API did not properly process '' elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer. This vulnerability affects Firefox 86...

6.1CVSS8.1AI score0.00255EPSS

Exploits0

Veracode•added 2021/02/25 12:7 a.m.•27 views

Cross-site Scripting(XSS)

firefox is vulnerable to cross-site scripting The DOMParser API did not properly process elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer...

6.1CVSS1.2AI score0.00255EPSS

Exploits0References4Affected Software7

Tenable Nessus•added 2021/02/23 12:0 a.m.•64 views

Mozilla Firefox < 86.0

The version of Firefox installed on the remote Windows host is prior to 86.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-07 advisory. - Mozilla developers Tyson Smith, Lars T Hansen, Valentin Gosu, and Sebastian Hengst reported memory safety bugs present ...

8.8CVSS7.9AI score0.01222EPSS

Exploits1References13

Tenable Nessus•added 2021/02/23 12:0 a.m.•77 views

Mozilla Firefox < 86.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 86.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-07 advisory. - Mozilla developers Tyson Smith, Lars T Hansen, Valentin Gosu, and Sebastian Hengst reported memory safety bug...

8.8CVSS7.9AI score0.01222EPSS

Exploits1References13

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by