EUVD-2022-6264

Malicious code in bioql PyPI...

CVE-2025-46654

CodiMD through 2.2.0 has a CSP-based protection mechanism against XSS through uploaded JavaScript content, but it can be bypassed by uploading a .html file that references an uploaded .js file...

CVE-2023-6142

Dev blog v1.0 allows to exploit an XSS through an unrestricted file upload, together with a bad entropy of filenames. With this an attacker can upload a malicious HTML file, then guess the filename of the uploaded file and send it to a potential victim...

PT-2022-7098 · Brave · Brave Browser

Name of the Vulnerable Software and Affected Versions: Brave Browser affected versions not specified Description: The issue is related to incorrect memory cleanup or deallocation in the Brave Browser, which can be exploited by a remote attacker using a specially crafted html file to cause a denia...

Mozilla Firefox 2.0.0.3 Gran Paradiso 3.0a3 - Hang Crash (Denial of Service)

Mozilla Firefox 2.0.0.3 Gran Paradiso 3.0a3 - Hang Crash Denial of Service usr/bin/python print "-------------------------------------------------------------------------" print " Mozilla Firefox 2.0.0.3 and Gran Paradiso 3.0a3 Denial of Service" print " author: shinnai" print " mail:...