Lucene search
K

4 matches found

OSV
OSV
added 2026/04/16 10:36 p.m.5 views

GHSA-45Q2-GJVG-7973 Angular: SSRF via protocol-relative and backslash URLs in Angular Platform-Server

Impact A Server-Side Request Forgery SSRF vulnerability exists in @angular/platform-server due to improper handling of URLs during Server-Side Rendering SSR. When an attacker sends a request such as GET /\evil.com/ HTTP/1.1 the server engine Express, etc. passes the URL string to Angular’s...

8.7CVSS5.8AI score0.00256EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2007/03/14 5:2 a.m.3 views

: seamonkey cookie setting / same-domain bypass vulnerability

Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8, allow remote attackers to bypass the same origin policy, steal cookies, and conduct other attacks by writing a URI with a null byte to the hostname location.hostname DOM property, due to...

7.5CVSS7.4AI score0.12144EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2007/03/02 6:27 p.m.2 views

: seamonkey cookie setting / same-domain bypass vulnerability

Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8, allow remote attackers to bypass the same origin policy, steal cookies, and conduct other attacks by writing a URI with a null byte to the hostname location.hostname DOM property, due to...

7.5CVSS7.4AI score0.12144EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2007/02/24 2:41 a.m.4 views

: seamonkey cookie setting / same-domain bypass vulnerability

Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8, allow remote attackers to bypass the same origin policy, steal cookies, and conduct other attacks by writing a URI with a null byte to the hostname location.hostname DOM property, due to...

7.5CVSS7.4AI score0.12144EPSS
Exploits7References4
Rows per page
Query Builder