CVE-2006-1729

Mozilla Firefox 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to read arbitrary files by 1 inserting the target filename into a text box, then turning that box into a file upload control, or 2 changing the type of the...

Opera web browser address bar spoofing weakness

The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript SPDX-FileCopyrightText: 2004 David...

Opera web browser address bar spoofing weakness

The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript 'unOnload' event handler when the brows...

[Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).

New 19.10.05 MS-IE Url Spoofing bug by K-Gen. Gr337s .. I K-Gen have found a new I think.. URL spoofing bug in IE. Affected : All MS-IE Browsers Win XP SP2 as well. This allows a malicious website to host a specially crafted A HREF tag that shows to the user as a link to one location, but actuall...

[Full-Disclosure] Gaim festival plugin exploit

It has come to my attention that people have actually used this example code for a gaim plugin: AIM::register"Festival TTS", "0.0.1", "goodbye", ""; AIM::print"Perl Says", "Loaded Festival TTS"; AIM::command"idle", "60000" if $pro ne "Offline"; AIM::addeventhandler"eventimrecv", "synthesize"; sub...

CVE-2002-1443

The Google toolbar 1.1.58 and earlier allows remote web sites to monitor a user's input into the toolbar via an "onkeydown" event handler...