The vulnerability of the Firefox browser, which allows a violator to trigger a service failure

The vulnerability of the Firefox browser’s HTTP/2 implementation arises from the loss of a significant number of bits. Exploiting this vulnerability allows an attacker to cause a service failure remotely by triggering a “Assertion failure” error message and a premature termination of the service...

The vulnerability of the Firefox browser, which allows a violator to trigger a service failure

The vulnerability in the implementation of the HTTP/2 protocol in Firefox browsers arises from the loss of precision in calculations. Exploiting this vulnerability allows a malicious actor to cause a service failure—the appearance of an error message indicating “Assertion failure” or an emergency...

Belkin N150 Wireless Home Router HTML Injection Vulnerability

Belkin N150 Wireless Home is a wireless router product from Belkin USA. An HTML injection vulnerability exists in the Belkin N150 Wireless Home Router, which can be exploited by an attacker to execute arbitrary HTML...

Let's PHP! p++BBS HTML Injection Vulnerability

Let's PHP! p++BBS is a bulletin board system. Let's PHP! p++BBS suffers from an HTML injection vulnerability that can be exploited by remote attackers to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when malicious data is viewed...

jsoup: XSS vulnerability related to incomplete tags at EOF

It was found that jsoup did not properly validate user-supplied HTML content; certain HTML snippets could get past the validator without being detected as unsafe. A remote attacker could use a specially crafted HTML snippet to execute arbitrary web script in the user's browser...

libxml2: CPU exhaustion when processing specially crafted XML input

A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to use an excessive amount of CPU...

libxml2: Out-of-bounds memory access

A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to crash...

libxml2: Buffer overread with XML parser in xmlNextChar

A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to leak potentially sensitive information...

libxml2: Out-of-bounds memory access

A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to crash...

The vulnerability of the Firefox browser allows a violator to circumvent domain restrictions and breach data confidentiality.

The vulnerability of Firefox browsers is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass access controls and compromise data confidentiality using a specially crafted HTML document...

Cisco Firepower 9000 Series Switches HTML Injection Vulnerability

Cisco Firepower 9000 Series Switches are Cisco 9000 series switch products. An HTML injection vulnerability exists in Cisco Firepower 9000 Series Switches. This vulnerability allows remote attackers to execute arbitrary HTML or script code in the context of an affected browser to steal cookie-bas...

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2015-07430)

Mozilla Firefox is an open source web browser. A security vulnerability exists in the Mozilla Firefox Search feature, which allows attackers to read log files and access file: URLs of HTML documents...

Mozilla Firefox HTTP Authentication Information Disclosure Vulnerability

Mozilla Firefox is an open source web browser. Mozilla Firefox uses NTLM v1 to perform HTTP authentication with a security vulnerability that allows remote attackers to build specially crafted Web sites to trick users into parsing for sensitive domain information...

UBUNTU-CVE-2015-5660

Cross-site request forgery CSRF vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code...

Cisco Email Security Appliance File Descriptor System Overload Vulnerability

The Cisco Email Security Appliance is a widely used email encryption gateway that seamlessly encrypts, decrypts, and digitally signs confidential email. A security vulnerability exists in the Cisco Email Security Appliance that allows remote attackers to exploit the vulnerability by submitting a...

The vulnerability of the iOS operating system, which allows a hacker to obtain the user’s password

The vulnerability of the HTML component implementation in WebKit of the iOS operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain the user’s password...

The vulnerability of Microsoft Lync Server’s messaging server allows a hacker to inject arbitrary web or HTML code.

The vulnerability of Microsoft Lync Server’s messaging server exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code through a specially crafted URL...

PHP 'valuePop()' Function Denial of Service Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A denial of service vulnerability exists in PHP. An attacker could exploit this vulnerability to cause a denial of service...

PHP 'php_var_unserialize()' function code execution vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A code execution vulnerability exists in PHP. An attacker could exploit this vulnerability to execute arbitrary code, which could also result in...

PHP PCRE extension has multiple vulnerabilities

PHP is a widely used general-purpose scripting language that is particularly well suited for web development and can be embedded in HTML. PHP suffers from a heap buffer overflow and denial of service vulnerability in the PCRE extension, which can be exploited by an attacker to cause an applicatio...