12 matches found
CVE-2026-35467
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials...
CVE-2026-35467
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials...
CVE-2026-35467
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials...
CVE-2026-35467 Private Key stored as extractable in browser IndexeDB
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials...
Facebook Brute Force with Customize Word Lists for Signed In Accounts
Brute Forcing is easy for Any Signed In Facebook Account at Firefox or Chrome. Usage Info Simple is that you just have to run on Developer Console of Google Chrome or Web Console of Firefox, Javascript Console of Safari, you name it. This is private exploit. You can buy it at https://0day.today...
[Opera 7] Yet Another Story of "Phantom of the Opera"
Greetings. We, :: Operash :: here release the information about vulnerability of Opera. --------------------------------------------------------------------------------- SYNOPSIS : Opera 7 Script Injection Vulnerability in JavaScript Console - Yet another story of "Phantom of the Opera". PRODUCT ...
Opera 7.0/7.10 - JavaScript Console Single Quote Attribute Injection
source: https://www.securityfocus.com/bid/7449/info A vulnerability has been reported for Opera 7 browsers for Microsoft Windows operating systems. The vulnerability exists in the Opera JavaScript console. Attackers may exploit the vulnerability to execute script code in a sensitive context...
Opera 7.07.10 - JavaScript Console Single Quote Attribute Injection
Opera 7.07.10 - JavaScript Console Single Quote Attribute Injection source: https://www.securityfocus.com/bid/7449/info A vulnerability has been reported for Opera 7 browsers for Microsoft Windows operating systems. The vulnerability exists in the Opera JavaScript console. Attackers may exploit t...
Phantom of the Opera (GM#003-OP)
GreyMagic Security Advisory GM003-OP ===================================== By GreyMagic Software, Israel. 04 Feb 2003. Available in HTML format at http://security.greymagic.com/adv/gm003-op/. Topic: Phantom of the Opera. Discovery date: 29 Jan 2003. Affected applications: ======================...
Opera 7.0 - JavaScript Console Attribute Injection
Opera 7.0 - JavaScript Console Attribute Injection source: https://www.securityfocus.com/bid/6755/info A vulnerability has been reported for Opera 7 browsers for Microsoft Windows operating systems. The vulnerability exists in the Opera JavaScript console. Attackers may exploit the vulnerability ...
Opera 7.0 - JavaScript Console Attribute Injection
source: https://www.securityfocus.com/bid/6755/info A vulnerability has been reported for Opera 7 browsers for Microsoft Windows operating systems. The vulnerability exists in the Opera JavaScript console. Attackers may exploit the vulnerability to execute script code in a sensitive context...
netscape.datatrack.txt
Date: Sun, 6 Jun 1999 13:17:04 +0300 From: Georgi Guninski To: [email protected] Subject: Netscape Communicator code injection in JavaScript console using "data:" protocol There is a bug in Netscape Communicator 4.6 Win95, 4.07 Linux probably all 4.x are affected, which allows sniffing URLs fr...