Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/04/01 12:0 a.m.5 views

Xenforo 信息泄露漏洞

Xenforo is a forum software developed by the Xenforo company. Versions of XenForo prior to 2.3.7 had a vulnerability related to information leakage, which originated from caching of local account pages on shared systems. This vulnerability could potentially lead to sensitive user information bein...

6.9CVSS5.8AI score0.00116EPSS
Exploits0References2
OSV
OSV
added 2024/05/30 12:15 p.m.6 views

CVE-2022-43841

IBM Aspera Console 3.4.0 through 3.4.2 PL9 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 239078...

3.3CVSS5.8AI score0.00158EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.3 views

SUSE CVE-2017-5033

Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android failed to correctly propagate CSP restrictions to local scheme pages, which allowed a remote attacker to bypass content security policy via a crafted HTML page, related to the unsafe-inline...

4.3CVSS8.4AI score0.0146EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/06/24 12:0 a.m.5 views

IBM Jazz Team Server 安全漏洞

IBM Jazz Team Server is an application server from IBM Corporation of America. IBM Jazz Team Server provides base services that enable a group of tools to work together as a single logical server, and includes any number of Jazz Team Server Extensions that provide tool-specific functionality.An...

4CVSS5.7AI score0.00249EPSS
Exploits0References3
Veracode
Veracode
added 2019/05/16 3:18 a.m.32 views

Privilege Escalation

Mozilla Firefox is vulnerable to privilege escalation. The vulnerability exists in an unknown functionality of the component WebExtension. An attacker could run content scripts in local pages without permission warnings when a local file is opened resulting in a privilege escalation...

7.1CVSS7.7AI score0.00368EPSS
Exploits0References14Affected Software4
OSV
OSV
added 2019/02/28 6:29 p.m.2 views

DEBIAN-CVE-2018-12397

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This...

7.1CVSS8.1AI score0.00368EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/10/24 10:18 p.m.5 views

Mozilla: WebExtension local file permission check bypass

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This...

7.1CVSS7.3AI score0.00368EPSS
Exploits0References5
Rows per page
Query Builder