Lucene search
K

6 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-25600 Malicious code in lootsie-sdk-ui-es5-inferno (npm)

The package lootsie-sdk-ui-es5-inferno was found to contain malicious code...

7.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/09/12 12:0 a.m.4 views

The vulnerabilities of the functions function#copy and function#toStringTokens in ECMAScript 5 from the es5-ext package allow a attacker to cause a service failure.

The vulnerabilities of the functioncopy and functiontoStringTokens functions in ECMAScript 5, part of the es5-ext package, involve uncontrolled resource consumption. Exploiting these vulnerabilities can allow attackers to cause service failures...

4.4CVSS6.5AI score0.00535EPSS
Exploits1References6Affected Software2
Positive Technologies
Positive Technologies
added 2024/02/26 12:0 a.m.4 views

PT-2024-6044 · Es5-Ext +2 · Es5-Ext +2

Name of the Vulnerable Software and Affected Versions: es5-ext versions prior to 0.10.63 Description: The issue is related to the es5-ext package, which contains ECMAScript 5 extensions. Passing functions with very long names or complex default argument names into functioncopy or...

5.5CVSS5.7AI score0.00535EPSS
Exploits1References22
SUSE CVE
SUSE CVE
added 2023/02/15 5:17 a.m.2 views

SUSE CVE-2015-4516

Mozilla Firefox before 41.0 allows remote attackers to bypass certain ECMAScript 5 aka ES5 API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 APIs...

9.3CVSS8.9AI score0.03456EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2015/10/06 12:0 a.m.6 views

The vulnerability of the Firefox browser allows a hacker to bypass the protection mechanisms of ECMAScript 5 (ES5) APIs and execute arbitrary code.

The vulnerability of Firefox browsers is related to errors in security settings. Exploiting this vulnerability allows a malicious actor to bypass the protection mechanisms of ECMAScript 5 ES5 APIs and execute arbitrary code using a specially crafted page that does not utilize ES5 mechanisms...

9.3CVSS8.2AI score0.03456EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2015/09/22 12:0 a.m.3 views

UBUNTU-CVE-2015-4516

Mozilla Firefox before 41.0 allows remote attackers to bypass certain ECMAScript 5 aka ES5 API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 APIs...

9.3CVSS7.6AI score0.03456EPSS
Exploits0References4
Rows per page
Query Builder