5 matches found
CVE-2026-54056
A flaw was found in Kitty, a cross-platform GPU based terminal. A remote attacker can exploit a vulnerability in the kitten dnd feature by sending a specially crafted drag-and-drop request. This allows the attacker to overwrite or truncate arbitrary files on the local system that are writable by...
EUVD-2014-1637
Malware in sbrugna...
Stored Cross-site Scripting (XSS)
moodle/moodle is vulnerable to Stored Cross-site Scripting XSS. The vulnerability is due to insufficient sanitization of user input when handling drag-and-drop image or text elements, allowing malicious scripts to be stored and executed...
What A Drag! -revisited-
Most people i talked to consider the Internet Explorer drag and drop vulnerability found by http-equiv not as a serious problem, because it requires some user interaction and the press pushes this topic way to much as the "first security problem in SP2". In an article on BetaNews even Microsoft...
HijackClick 3
Note: This vulnerability as well as several more can be found at http://www.greyhats.cjb.net HijackClick 3!!! Took the name from Liu Die Yu : Tested IEXPLORE.EXE file version 6.0.2800.1106 MSHTML.DLL file version 6.00.2800.1400 Microsoft Windows XP sp2 Discussion The HijackClick series have been...