Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.6 views

SUSE CVE-2019-11711

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS8.5AI score0.01633EPSS
Exploits0References24
OSV
OSV
added 2019/07/23 2:15 p.m.2 views

DEBIAN-CVE-2019-11711

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS8.6AI score0.01633EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/07/16 8:27 p.m.6 views

Mozilla: Script injection within domain through inner window reuse

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS7.4AI score0.01633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/07/15 1:40 p.m.5 views

Mozilla: Script injection within domain through inner window reuse

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS7.4AI score0.01633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/07/15 12:45 p.m.8 views

Mozilla: Script injection within domain through inner window reuse

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS7.4AI score0.01633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/07/11 6:0 p.m.6 views

Mozilla: Script injection within domain through inner window reuse

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS7.4AI score0.01633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/07/11 5:20 p.m.6 views

Mozilla: Script injection within domain through inner window reuse

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS7.4AI score0.01633EPSS
Exploits0References5
OSV
OSV
added 2019/07/11 12:0 a.m.1 views

UBUNTU-CVE-2019-11711

When an inner window is reused, it does not consider the use of document.domain for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did...

8.8CVSS7.3AI score0.01633EPSS
Exploits0References6
Rows per page
Query Builder