SUSE CVE-2011-2984

Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and possibly other products does not properly handle the dropping of a tab element, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by establishing a content area and registering...

USN-5782-1: Firefox vulnerabilities

It was discovered that Firefox was using an out-of-date libusrsctp library. An attacker could possibly use this library to perform a reentrancy issue on Firefox. CVE-2022-46871 Nika Layzell discovered that Firefox was not performing a check on paste received from cross-processes. An attacker coul...

CVE-2019-11698

If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for...

DEBIAN-CVE-2019-11698

If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for...

MS Outlook Express Window Opener Vulnerability

Exploit for unknown platform in category remote exploits ============================================== MS Outlook Express Window Opener Vulnerability ============================================== Example: Alright microsoft. Get your act together. Seriously, this is the 3rd version of this...

Microsoft Outlook Express - Window Opener

Microsoft Outlook Express - Window Opener Example: Alright microsoft. Get your act together. Seriously, this is the 3rd version of this vulnerability and we can still cause a drag and drop event. Well anyway, to the people that don't design easily exploited software, simply click the link on the...