Lucene search
K

99 matches found

NVD
NVD
added 2016/01/26 7:59 p.m.24 views

CVE-2016-0869

Heap-based buffer overflow in MICROSYS PROMOTIC before 8.3.11 allows remote authenticated users to cause a denial of service via a malformed HTML document...

7.1CVSS5.1AI score0.01045EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2015/10/30 9:42 a.m.20 views

CVE-2007-4229

Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service failed assertion and application crash via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance ...

4.3CVSS7.2AI score0.02184EPSS
Exploits1References2
exploitpack
exploitpack
added 2015/04/27 12:0 a.m.13 views

WordPress 4.2 - Persistent Cross-Site Scripting

WordPress 4.2 - Persistent Cross-Site Scripting Source: http://klikki.fi/adv/wordpress2.html Overview Current versions of WordPress are vulnerable to a stored XSS. An unauthenticated attacker can inject JavaScript in WordPress comments. The script is triggered when the comment is viewed. If...

6.8AI score
Exploits0
0day.today
0day.today
added 2015/04/27 12:0 a.m.25 views

WordPress 4.2 - Stored XSS Vulnerability

Exploit for php platform in category web applications Overview Current versions of WordPress are vulnerable to a stored XSS. An unauthenticated attacker can inject JavaScript in WordPress comments. The script is triggered when the comment is viewed. If triggered by a logged-in administrator, unde...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

Microsoft Shlwapi.dll 6.0.2800 .1106 Malformed HTML Form Tag DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7402/info The 'shlwapi.dll' dynamic link library causes a calling application to fail when it attempts to render certain malformed HTML tags. This appears to be due to an attempt to perform a string comparison where one o...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2013/02/28 6:53 p.m.6 views

rubygem-actionpack: XSS Vulnerability in strip_tags

Cross-site scripting XSS vulnerability in actionpack/lib/actionview/helpers/sanitizehelper.rb in the striptags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup...

4.3CVSS7.3AI score0.01977EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2013/01/10 8:39 p.m.7 views

rubygem-actionpack: XSS Vulnerability in strip_tags

Cross-site scripting XSS vulnerability in actionpack/lib/actionview/helpers/sanitizehelper.rb in the striptags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup...

4.3CVSS7.3AI score0.01977EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2011/05/05 12:0 a.m.40 views

RedHat Update for thunderbird RHSA-2011:0474-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.8AI score0.70005EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2010/12/10 12:0 a.m.43 views

RHEL 6 : thunderbird (RHSA-2010:0969)

An updated thunderbird package that fixes several security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity rating...

9.3CVSS8.5AI score0.08669EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2009/07/29 12:0 a.m.5 views

PT-2009-4378 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 5.01 SP4 through 8 Description: A remote code execution issue exists due to improper handling of table operations, allowing attackers to execute arbitrary code via a crafted HTML document that triggers...

10CVSS7.6AI score0.43317EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2009/06/30 12:0 a.m.38 views

RedHat Security Advisory RHSA-2009:1125

The remote host is missing updates announced in advisory RHSA-2009:1125. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or,...

9.3CVSS8.4AI score0.09282EPSS
Exploits3References2
UbuntuCve
UbuntuCve
added 2007/08/08 10:17 p.m.31 views

CVE-2007-4229

Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service failed assertion and application crash via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance ...

4.3CVSS5.9AI score0.02184EPSS
Exploits1References1
Prion
Prion
added 2007/08/08 10:17 p.m.19 views

Design/Logic Flaw

Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service failed assertion and application crash via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance ...

4.3CVSS7AI score0.02184EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2007/08/08 10:17 p.m.19 views

CVE-2007-4229

Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service failed assertion and application crash via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance ...

4.3CVSS6.5AI score0.02184EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/08/08 10:0 p.m.28 views

CVE-2007-4229

Unspecified vulnerability in KDE Konqueror 3.5.7 and earlier allows remote attackers to cause a denial of service failed assertion and application crash via certain malformed HTML, as demonstrated by a document containing TEXTAREA, BUTTON, BR, BDO, PRE, FRAMESET, and A tags. NOTE: the provenance ...

6.5AI score0.02184EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/03/13 11:23 p.m.2 views

security flaw

Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."...

4.3CVSS7.4AI score0.06659EPSS
Exploits0References4
CVE
CVE
added 2007/02/23 1:0 a.m.48 views

CVE-2006-7030

The CVE-2006-7030 entry concerns Microsoft Internet Explorer 6 SP2 and earlier. It describes a vulnerability where remote attackers can cause a denial of service (crash) by delivering certain malformed HTML, potentially involving applet and base tags without required arguments, which triggers a n...

5CVSS7AI score0.16464EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2007/02/16 7:28 p.m.17 views

CVE-2007-0451

Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."...

4.3CVSS7.3AI score0.06659EPSS
Exploits0References1
NVD
NVD
added 2007/02/16 7:28 p.m.13 views

CVE-2007-0451

Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."...

4.3CVSS6.4AI score0.06659EPSS
Exploits0References23
OSV
OSV
added 2007/02/16 7:28 p.m.3 views

DEBIAN-CVE-2007-0451

Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."...

4.3CVSS6.9AI score0.06659EPSS
Exploits0References1
Rows per page
Query Builder