CVE-2005-0231

Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or data: URL to a tab, which allows remote attackers to bypass the security model, aka "firetabbing."...

CVE-2005-0231

Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or data: URL to a tab, which allows remote attackers to bypass the security model, aka "firetabbing."...

Sun Java Runtime Environment 1.x Java Plugin - JavaScript Security Restriction Bypass

source: https://www.securityfocus.com/bid/11726/info A vulnerability is reported to exist in the access controls of the Java to JavaScript data exchange within web browsers that employ the Sun Java Plug-in. Reports indicate that it is possible for a malicious website that contains JavaScript code...

Mozilla Javascript Array Object Heap Overflow (deprecated)

Binary data 1328.prm...

CVE-2002-0815

The Javascript "Same Origin Policy" SOP, as implemented in 1 Netscape, 2 Mozilla, and 3 Internet Explorer, allows a remote web server to access HTTP and SOAP/XML content from restricted sites by mapping the malicious server's parent DNS domain name to the restricted site, loading a page from the...

Обход Baltimore's WEBSweep (protection bypass)

Можно обойти защиту от javascript и запрещенных URL...

CVE-1999-0762

When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information...