Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2016/09/23 12:0 a.m.33 views

Ubuntu 14.04 LTS / 16.04 LTS : Firefox vulnerabilities (USN-3076-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3076-1 advisory. Atte Kettunen discovered an out-of-bounds read when handling certain Content Security Policy CSP directives in some circumstances. If a user...

9.8CVSS8AI score0.05037EPSS
Exploits0References19
Prion
Prion
added 2014/02/06 11:55 p.m.15 views

Information disclosure

Opera before 19 on Mac OS X allows user-assisted remote attackers to spoof the address bar via vectors involving a drag-and-drop operation...

4.3CVSS7.1AI score0.00958EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2014/02/06 11:0 p.m.51 views

CVE-2014-1870

CVE-2014-1870 affects Opera on Mac OS X prior to version 19. The vulnerability allows a user‑assisted remote attacker to spoof the address bar through drag‑and‑drop related vectors. The public records consistently describe the issue as an address bar spoofing flaw in Opera before 19 on macOS, wit...

4.3CVSS6.7AI score0.00958EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2012/03/08 10:55 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in WebKit, as used in Apple iOS before 5.1, allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a drag-and-drop operation...

4.3CVSS5.3AI score0.02015EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2011/06/16 8:55 p.m.15 views

Information disclosure

Microsoft Internet Explorer 6 through 8 does not properly restrict web script, which allows user-assisted remote attackers to obtain sensitive information from a different 1 domain or 2 zone via vectors involving a drag-and-drop operation, aka "Drag and Drop Information Disclosure Vulnerability."...

4.3CVSS6.3AI score0.1465EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/06/16 8:21 p.m.57 views

CVE-2011-1258

CVE-2011-1258 affects Microsoft Internet Explorer 6–8. The vulnerability arises from improper restriction of web scripting, enabling a user‑assisted attacker to disclose sensitive information from a different domain/zone via drag‑and‑drop. Impact is partial confidentiality loss. Remediation: appl...

4.3CVSS5.9AI score0.1465EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder