Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2023/10/10 5:15 p.m.1 views

CVE-2023-5496

A vulnerability was found in Translator PoqDev Add-On 1.0.11 on Firefox. It has been rated as problematic. This issue affects some unknown processing of the component Select Text Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The complexity of an...

5.4CVSS3.5AI score
Exploits0References3
SUSE CVE
SUSE CVEadded 2023/02/15 5:14 a.m.1 views

SUSE CVE-2015-7187

The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: false" panel setting, which makes it easier for remote attackers to conduct cross-site scripting XSS attacks via inline JavaScript code that is executed within a third-party extension...

4.3CVSS6AI score0.00483EPSS
Exploits0References5
Kitploit
Kitploitadded 2021/05/31 12:30 p.m.73 views

Bucky - An Automatic S3 Bucket Discovery Tool

Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules Bucky firefox addon and Bucky backend engine. Bucky addon reads the source code of the webpages and uses Regular ExpressionRegex to match the S3 bucket used as Content Delivery NetworkCDN...

7.3AI score
Exploits0References3
Kitploit
Kitploitadded 2014/09/10 2:22 a.m.13 views

BurpSentintel - GUI Burp Plugin to ease discovering of security holes in web applications

A plugin for Burp Intercepting Proxy, to aid and ease the identification of vulnerabilities in web applications. Searching for vulnerabilities in web applications can be a tedious task. Most of the time consists of inserting magic chars into parameters, and looking for suspicious output. Sentinel...

6.4AI score
Exploits0References9
Hacker One
Hacker Oneadded 2014/03/01 11:27 p.m.53 views

Slack: CSRF on add comment section

Hi, Steps to repro: 1 Go to this link https://sehacure.slack.com/help/requests/237956 2 The malicious guy should now the request number and the username. 3 Open Tamper data using tamper data firefox addon,Fill the reply in the form. 4 Submit the request.You will see there are no anti-csrf token i...

7AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2011/09/02 10:14 a.m.2 views

Sage vulnerable to arbitrary script execution

Overview Sage is vulnerable to arbitrary script execution. Note that this vulnerability is different from JVN99203127. Sage is an addon for Mozilla Firefox that adds an RSS/Atom feed reader. Sage is vulnerable to arbitrary script execution due to the improper processing during HTML page output...

5.8CVSS9.1AI score0.00225EPSS
Exploits0References5
0day.today
0day.todayadded 2009/12/21 12:0 a.m.19 views

3Com OfficeConnect Routers DoS (Content-Type)

Exploit for unknown platform in category dos / poc ============================================= 3Com OfficeConnect Routers DoS Content-Type ============================================= Title: 3Com OfficeConnect Routers DoS Content-Type CVE-ID: OSVDB-ID: Author: Alberto Ortega Published:...

7AI score
Exploits0
Rows per page
Query Builder