UBUNTU-CVE-2017-7788

When an "iframe" has a "sandbox" attribute and its content is specified using "srcdoc", that content does not inherit the containing page's Content Security Policy CSP as it should unless the sandbox attribute included "allow-same-origin". This vulnerability affects Firefox 55...

UBUNTU-CVE-2017-7791

On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox ...

rojgaronline.com IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-277458 Description| Value ---|--- Affected Website:| rojgaronline.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

CVE-2017-7791

On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox ...

wittbirn.k12.wi.us IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-276475 Description| Value ---|--- Affected Website:| wittbirn.k12.wi.us Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

littlefriends.co.uk IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-276473 Description| Value ---|--- Affected Website:| littlefriends.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

mangatown.com IFRAME Injection vulnerability

Vulnerable URL: http://www.mangatown.com/search.php?name= XANY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 06.11.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 3933 VIP website status:| Yes Check mangatown.com SSL...

education.ohio.gov IFRAME Injection vulnerability

Vulnerable URL: https://education.ohio.gov/Miscellaneous/Newsletter-Search?pagetitle=" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

webworldcam.com IFRAME Injection vulnerability

Vulnerable URL: http://www.webworldcam.com/webcam-index.php?var=12620=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 27.11.2017 Latest check for patch:| 27.11.2017 21:37 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa...

ragnarok2.com.br IFRAME Injection vulnerability

Vulnerable URL: http://ragnarok2.com.br/index.php?s=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 12.09.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 15147941 VIP website status:| No Check...

upf.edu IFRAME Injection vulnerability

Vulnerable URL: https://www.upf.edu/web/grau-obert/?ppid=3pstate=maximizedpmode=view&3strutsaction=/search/search&3keywords='"--! XANY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 02.11.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclos...

peekyou.com IFRAME Injection vulnerability

Vulnerable URL: http://www.peekyou.com/boayue?url=" xany Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 11736 VIP website status:| Yes Check peekyou.com SSL connection:| Grade: A- Coordinated...

docsity.com IFRAME Injection vulnerability

Vulnerable URL: https://www.docsity.com/it/search/?q=" XANY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 21699 VIP website status:| Yes Coordinated Disclosure Timeline: Description| Value ---|---...

chromium-browser: user information leak via svg

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page...

CVE-2017-5107

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page...

hyips.cc IFRAME Injection vulnerability

Vulnerable URL: http://hyips.cc/getbannercode.php?id=xany" XANY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 5513309 VIP website status:| No Check hyips.cc SSL connection:| Grade: B- Coordinated...

countyoffice.org IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-269505 Description| Value ---|--- Affected Website:| countyoffice.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

bellotube.com IFRAME Injection vulnerability

Vulnerable URL: http://bellotube.com/en/search/" XANY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 18.08.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 28333 VIP website status:| Yes Check bellotube.com SSL connection:...

pornkino.to IFRAME Injection vulnerability

Vulnerable URL: http://pornkino.to/?s=" XANY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 32366 VIP website status:| Yes Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability...

freeporncategories.com IFRAME Injection vulnerability

Vulnerable URL: http://freeporncategories.com/?search=" XANY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 68956 VIP website status:| No Check freeporncategories.com SSL connection:| Grade: F...