CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/22 8:3 a.m.•5 views

CVE-2019-12966

FeHelper through 2019-06-19 allows arbitrary code execution during a JSON format operation, as demonstrated by the "a":functionconfirm1 input...

9.8CVSS7.8AI score0.01119EPSS

Exploits1References1

NVD•added 2019/06/26 12:15 p.m.•6 views

CVE-2019-12966

FeHelper through 2019-06-19 allows arbitrary code execution during a JSON format operation, as demonstrated by the "a":functionconfirm1 input...

9.8CVSS9.7AI score0.01119EPSS

Exploits1References1

OSV•added 2019/06/26 12:15 p.m.•1 views

CVE-2019-12966

FeHelper through 2019-06-19 allows arbitrary code execution during a JSON format operation, as demonstrated by the "a":functionconfirm1 input...

9.8CVSS7.8AI score0.01119EPSS

Exploits1References1

Prion•added 2019/06/26 12:15 p.m.•11 views

Format string

FeHelper through 2019-06-19 allows arbitrary code execution during a JSON format operation, as demonstrated by the "a":functionconfirm1 input...

7.5CVSS9.6AI score0.01119EPSS

Exploits1References1Affected Software1

CVE•added 2019/06/26 11:31 a.m.•56 views

CVE-2019-12966

FeHelper extension (through 2019-06-19) is reported to permit arbitrary code execution during a JSON format operation, demonstrated by the payload {"a":(function(){confirm(1)})()}. Affected software: FeHelper (browser extension) as of the cited timeframe. Root cause: JSON formatting operation lea...

9.8CVSS9.6AI score0.01119EPSS

Exploits1References1Affected Software1