Lucene search
K

59110 matches found

Vulnrichment
Vulnrichment
added 2025/12/09 1:37 p.m.1 views

CVE-2025-14324 JIT miscompilation in the JavaScript Engine: JIT component

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

7.2AI score0.00481EPSS
Exploits0References6
CVE
CVE
added 2025/12/09 1:37 p.m.32 views

CVE-2025-14324

CVE-2025-14324 describes a JIT miscompilation in the JavaScript Engine’s JIT component affecting Firefox < 146, Firefox ESR < 115.31 and < 140.6, and Thunderbird

9.8CVSS7.2AI score0.00481EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2025/12/09 1:37 p.m.20 views

CVE-2025-14324 JIT miscompilation in the JavaScript Engine: JIT component

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

0.00481EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/12/09 7:58 a.m.8 views

firefox: thunderbird: Incorrect boundary conditions in the JavaScript: WebAssembly component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript: WebAssembly component...

7.5CVSS6AI score0.0041EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/12/09 5:0 a.m.4 views

CVE-2025-14284

Versions of the package @tiptap/extension-link before 2.10.4 are vulnerable to Cross-site Scripting XSS due to unsanitized user input allowed in setting or toggling links. An attacker can execute arbitrary JavaScript code in the context of the application by injecting a javascript: URL payload in...

6.1CVSS6.3AI score0.00302EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/09 5:0 a.m.32 views

CVE-2025-14284

Versions of the package @tiptap/extension-link before 2.10.4 are vulnerable to Cross-site Scripting XSS due to unsanitized user input allowed in setting or toggling links. An attacker can execute arbitrary JavaScript code in the context of the application by injecting a javascript: URL payload in...

6.1CVSS0.00302EPSS
Exploits1References4
GithubExploit
GithubExploit
added 2025/12/09 12:10 a.m.138 views

Exploit for Cross-site Scripting in Misp

MISP 2.5.27 Stored XSS Exploitation Vulnerability Identifie...

9CVSS5.3AI score0.00273EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-50136

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the Message parameter of the ''/Mobile/Compose.aspx'' API endpoint. The Message value is not proper...

6.1CVSS5.7AI score0.00324EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-50143

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description The software contains a reflected cross-site scripting XSS issue in the InstanceScope parameter of the ''/Mondo/lang/sys/Forms/CAL/compose.aspx'' endpoint. The InstanceScope value is not properly...

6.1CVSS5.7AI score0.00324EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-50141

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS issue in the FieldCc parameter of the ''/Mondo/lang/sys/Forms/AddressBook.aspx'' endpoint. The FieldCc value is not...

6.1CVSS6AI score0.00324EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49800

Name of the Vulnerable Software and Affected Versions @tiptap/extension-link versions prior to 2.10.4 Description The @tiptap/extension-link package is susceptible to Cross-site Scripting XSS because of unsanitized user input when setting or toggling links. An attacker can inject a javascript: UR...

6.1CVSS6.2AI score0.00302EPSS
Exploits1References8
CVE
CVE
added 2025/12/09 12:0 a.m.18 views

CVE-2025-61074

Affected product: adata Software GmbH Mitarbeiter Portal 2.15.2.0 (SchwarzeBrett bulletin board). Vulnerability: Stored XSS in the Inhalts parameter of CreateNachricht and EditNachricht endpoints, exploitable by remote authenticated users to run arbitrary JavaScript in other users’ browsers. Impa...

4.6CVSS5.8AI score0.0028EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox versions prior to 146 and ESR 140.6, which stems from a compilation error in the JavaScript Engine JIT component that could lead to code execution...

7.3CVSS6.7AI score0.00292EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Mozilla Firefox和Mozilla Firefox ESR 安全漏洞

Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation, U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in Mozilla Firefox versions prior to 146 and Firefox...

9.8CVSS6.8AI score0.00422EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Mozilla Firefox和Mozilla Firefox ESR 安全漏洞

Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation, U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in Mozilla Firefox versions prior to 146, Firefox ES...

9.8CVSS6.8AI score0.00481EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-14325

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird...

7.3CVSS7.1AI score0.00292EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.5 views

Mozilla Firefox < 146.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 146.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-92 advisory. - Privilege escalation in the Netmonitor component. This vulnerability affects Firefox 146 and Firefox ESR...

9.8CVSS8.6AI score0.00498EPSS
Exploits2References14
Kaspersky
Kaspersky
added 2025/12/09 12:0 a.m.8 views

KLA90817 Multiple vulnerabilities in Mozilla Thunderbird ESR

Multiple vulnerabilities were found in Mozilla Thunderbird ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerability in the...

9.8CVSS8.9AI score0.00498EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.2 views

Mozilla Firefox ESR < 140.6

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 140.6. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-94 advisory. - Privilege escalation in the Netmonitor component. This vulnerability affects Firefox 146 and Firefox ESR...

9.8CVSS8.6AI score0.00498EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-14330

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird...

9.8CVSS7.3AI score0.00422EPSS
Exploits0References3
Rows per page
Query Builder