Lucene search
K

227 matches found

RedHat Linux
RedHat Linux
added 2025/05/29 7:32 p.m.5 views

thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link

The Mozilla Foundation's Security Advisory describes the following issue: Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute JavaScript in the file:/// context. By crafting a nested email attachment message/rfc822 and setting its content type to...

8.1CVSS7.5AI score0.00363EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 7:48 a.m.19 views

CVE-2024-20396

A vulnerability in the protocol handlers of Cisco Webex App could allow an unauthenticated, remote attacker to gain access to sensitive information. This vulnerability exists because the affected application does not safely handle file protocol handlers. An attacker could exploit this vulnerabili...

6.5CVSS7.1AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:8 a.m.7 views

CVE-2022-43983

Browsershot version 3.57.2 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the HTML content passed to the Browsershot::html method does not contain URL's that use the file:// protocol...

8.2CVSS6.6AI score0.00635EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/05/16 2:54 a.m.3 views

SUSE CVE-2025-3909

Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute JavaScript in the file:/// context. By crafting a nested email attachment message/rfc822 and setting its content type to application/pdf, Thunderbird may incorrectly render it as HTML when opened,...

8.1CVSS7.1AI score0.00363EPSS
Exploits0References8
OSV
OSV
added 2025/05/14 5:15 p.m.3 views

DEBIAN-CVE-2025-3909

Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute JavaScript in the file:/// context. By crafting a nested email attachment message/rfc822 and setting its content type to application/pdf, Thunderbird may incorrectly render it as HTML when opened,...

8.1CVSS7.2AI score0.00363EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/05/14 5:15 p.m.7 views

CVE-2025-3909

Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute JavaScript in the file:/// context. By crafting a nested email attachment message/rfc822 and setting its content type to application/pdf, Thunderbird may incorrectly render it as HTML when opened,...

6.5CVSS7.1AI score0.00363EPSS
Exploits0References4
OSV
OSV
added 2025/05/14 5:15 p.m.3 views

UBUNTU-CVE-2025-3909

Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute JavaScript in the file:/// context. By crafting a nested email attachment message/rfc822 and setting its content type to application/pdf, Thunderbird may incorrectly render it as HTML when opened,...

8.1CVSS7AI score0.00363EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/05/13 4:5 p.m.10 views

thunderbird: Leak of hashed Window credentials via crafted attachment URL

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Thunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can be hosted externally. When an email is opened, Thunderbird accesses the specified URL to...

6.3CVSS6.6AI score0.0024EPSS
Exploits0References7
NVD
NVD
added 2025/04/16 1:15 p.m.16 views

CVE-2025-1982

Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user to provide link to a local file using the file:// protocol thus allowing the attacker to read content of the file. This vulnerability can be use to read content of system files...

7.1CVSS0.00509EPSS
Exploits0References3
CVE
CVE
added 2025/04/16 12:36 p.m.50 views

CVE-2025-1982

CVE-2025-1982 is a Local File Inclusion vulnerability in Ready’s attachment upload panel. The Red Hat CVE-2025-1982 entry confirms a low-privilege user can exploit a file:// link to read local system files, indicating a confidentiality impact. Connected RH entries also describe a related CVE-2025...

7.1CVSS6AI score0.00509EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/16 12:36 p.m.23 views

CVE-2025-1982 Local File Inclusion in Ready_

Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user to provide link to a local file using the file:// protocol thus allowing the attacker to read content of the file. This vulnerability can be use to read content of system files...

7.1CVSS0.00509EPSS
Exploits0References3
Snyk
Snyk
added 2025/03/20 10:47 a.m.2 views

Relative Path Traversal

Overview mlflow is a platform to streamline machine learning development, including tracking experiments, packaging code into reproducible runs, and sharing and deploying models. Affected versions of this package are vulnerable to Relative Path Traversal in the...

7.7CVSS6.9AI score0.02484EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/03/09 6:31 a.m.6 views

CVE-2025-2116 Beijing Founder Electronics Founder Enjoys All-Media Acquisition and Editing System File Protocol imageProxy.do server-side request forgery

A vulnerability has been found in Beijing Founder Electronics Founder Enjoys All-Media Acquisition and Editing System 3.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /newsedit/newsedit/xy/imageProxy.do of the component File Protocol Handle...

5.3CVSS7AI score0.00377EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/09 6:31 a.m.16 views

CVE-2025-2116 Beijing Founder Electronics Founder Enjoys All-Media Acquisition and Editing System File Protocol imageProxy.do server-side request forgery

A vulnerability has been found in Beijing Founder Electronics Founder Enjoys All-Media Acquisition and Editing System 3.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /newsedit/newsedit/xy/imageProxy.do of the component File Protocol Handle...

5.3CVSS0.00377EPSS
Exploits0References4
CVE
CVE
added 2025/03/09 6:31 a.m.53 views

CVE-2025-2116

CVE-2025-2116 affects Beijing Founder Electronics’ Founder Enjoys All-Media Acquisition and Editing System 3.0. The vulnerability exists in the File Protocol Handler’s /newsedit/newsedit/xy/imageProxy.do, where manipulating the xyImgUrl parameter enables server-side request forgery. The issue is ...

5.3CVSS4.7AI score0.00377EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/19 10:58 p.m.12 views

CVE-2024-37359 Hitachi Vantara Pentaho Business Analytics Server – Server Side Request Forgery

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination. CWE-918 Hitachi Vantara Pentaho Business Analytics Server versions before 10.2.0.0...

8.6CVSS0.00476EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/19 12:0 a.m.6 views

PT-2025-7409 · Hitachi Vantara · Hitachi Vantara Pentaho Business Analytics Server

Name of the Vulnerable Software and Affected Versions: Hitachi Vantara Pentaho Business Analytics Server versions prior to 10.2.0.0 Hitachi Vantara Pentaho Business Analytics Server versions prior to 9.3.0.9 Hitachi Vantara Pentaho Business Analytics Server version 8.3.x Description: The web serv...

8.6CVSS7.2AI score0.00476EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/02/04 10:57 p.m.9 views

CVE-2024-0440

Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files...

9.6CVSS6.6AI score0.00636EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2025/01/29 8:0 a.m.6 views

ksmbd: Fix the missing xa_store error check

...

5.5CVSS7AI score0.00228EPSS
Exploits0
OSV
OSV
added 2024/12/20 3:10 p.m.11 views

GHSA-2QGM-M29M-CJ2H uptime-kuma vulnerable to Local File Inclusion (LFI) via Improper URL Handling in `Real-Browser` monitor

Summary An Improper URL Handling Vulnerability allows an attacker to access sensitive local files on the server by exploiting the file:/// protocol. This vulnerability is triggered via the "real-browser" request type, which takes a screenshot of the URL provided by the attacker. By supplying loca...

6.8CVSS6.8AI score0.01793EPSS
Exploits0References5
Rows per page
Query Builder