CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

CNNVD•added 2025/03/13 12:0 a.m.•1 views

IntegratedScripting 注入漏洞

IntegratedScripting is a Cyclops open source for creating scripts for handling complex operations in integrated dynamics. IntegratedScripting suffers from an injection vulnerability that stems from escaping the JavaScript sandbox via Java reflection on a thrown exception object to construct...

9.4CVSS8.2AI score0.00447EPSS

Exploits0References4

Packet Storm•added 2017/04/09 12:0 a.m.•59 views

Apple WebKit JSCallbackData UXSS

Apple Webkit: UXSS with JSCallbackData CVE-2017-2442 Here is the definition of |JSCallbackData| class. This class is used to call a javascript function from a DOM object. class JSCallbackDataStrong : public JSCallbackData public: JSCallbackDataStrongJSC::JSObject callback, void :...

4.3CVSS0.1AI score0.12422EPSS

Exploits3

exploitpack•added 2017/04/04 12:0 a.m.•11 views

Apple Webkit - JSCallbackData Universal Cross-Site Scripting

Apple Webkit - JSCallbackData Universal Cross-Site Scripting globalObject-vm, callback JSC::JSObject callback return mcallback.get; JSDOMGlobalObject globalObject return JSC::jsCastmcallback-globalObject; JSC::JSValue invokeCallbackJSC::MarkedArgumentBuffer& args, CallbackType callbackType,...

0.3AI score

Exploits0

Exploit DB•added 2017/04/04 12:0 a.m.•41 views

Apple Webkit - 'JSCallbackData' Universal Cross-Site Scripting

globalObject-vm, callback JSC::JSObject callback return mcallback.get; JSDOMGlobalObject globalObject return JSC::jsCastmcallback-globalObject; JSC::JSValue invokeCallbackJSC::MarkedArgumentBuffer& args, CallbackType callbackType, JSC::PropertyName functionName, NakedPtr& returnedException return...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by