PT-2025-23973

Name of the Vulnerable Software and Affected Versions AgileBPM versions up to 2.5.0 Description A critical vulnerability was found in AgileBPM, affecting the executeScript function of the Groovy Script Handler component. The manipulation of the script argument leads to deserialization, allowing f...

SUSE CVE-2018-5135

WebExtensions can bypass normal restrictions in some circumstances and use "browser.tabs.executeScript" to inject scripts into contexts where this should not be allowed, such as pages from other WebExtensions or unprivileged "about:" pages. This vulnerability affects Firefox 59...

CVE-2021-38647

Open Management Infrastructure Remote Code Execution Vulnerability Recent assessments: wvu-r7 at September 15, 2021 4:37am UTC reported: RCE PoC using ExecuteScript multi-line shell script execution: wvu@kharak:/Downloads$ curl -vs http://127.0.0.1:5985/wsman -H "Content-Type: application/soap+xm...

The vulnerability of the browser.tabs.executeScript() function in the WebExtensions extension of the Mozilla Firefox browser allows a hacker to perform cross-site scripting attacks.

The vulnerability of the browser.tabs.executeScript function in WebExtensions extensions of the Mozilla Firefox browser is related to access control deficiencies. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...