CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Maxthon3 before version 3.3 is vulnerable to cross-context scripting (XCS) via the about:history page. The trusted zone may execute injected script content with privileged context, enabling modification of browser configuration and execution of arbitrary code through Maxthon’s exposed DOM APIs (e...

8.7CVSS6.1AI score0.67787EPSS

Exploits0References6

ATTACKERKB•added 2025/08/05 8:3 p.m.•2 views

CVE-2012-10032

Maxthon3 version 3.2.2 build 1000 and prior are vulnerable to cross context scripting XCS via the about:history page. The browser’s trusted zone improperly handles injected script content, allowing attackers to execute arbitrary JavaScript in a privileged context. This flaw enables modification o...

8.7CVSS6.1AI score0.67787EPSS

Exploits0References6

CNNVD•added 2025/08/05 12:0 a.m.•1 views

Maxthon 3 安全漏洞

Maxthon 3 Maxthon Browser 3 is a browser from the Chinese company Maxthon. A security vulnerability exists in Maxthon 3 Maxthon Browser 3 versions prior to 3.3, which stems from improper handling of about:history page input and could lead to a cross-context scripting attack...

8.7CVSS6.2AI score0.67787EPSS

Exploits0References7

RedhatCVE•added 2025/05/22 8:24 a.m.•4 views

CVE-2019-16647

Unquoted Search Path in Maxthon 5.1.0 to 5.2.7 Browser for Windows...

9CVSS6.9AI score0.00606EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 2:35 a.m.•6 views

CVE-2010-5246

Multiple untrusted search path vulnerabilities in Maxthon Browser 1.6.7.35 and 2.5.15 allow local users to gain privileges via a Trojan horse 1 RSRC32.dll or 2 dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .html file. NOTE: the provenance of this...

6.9CVSS6.9AI score0.00057EPSS

Exploits0References1

Tenable Nessus•added 2023/09/14 12:0 a.m.•10 views

Maxthon Browser Installed (Windows)

Binary data maxthonbrowserwininstalled.nbin...

7.3AI score

Exploits0References1

VulnCheck KEV•added 2022/01/26 12:0 a.m.•0 views

VulnCheck KEV: CVE-2019-16647

Unquoted Search Path in Maxthon 5.1.0 to 5.2.7 Browser for Windows...

9CVSS7AI score0.00606EPSS

Exploits1References1

Openbugbounty•added 2021/11/28 8:40 p.m.•17 views

extension.maxthon.com Cross Site Scripting vulnerability OBB-2286898

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score

Exploits0

Metasploit•added 2021/09/28 5:42 p.m.•56 views

Maxthon Credential Gatherer

This module searches for Maxthon credentials on a Windows host. Module Options msf use post/windows/gather/credentials/maxthon msf postmaxthon show actions ...actions... msf postmaxthon set ACTION msf postmaxthon show options ...show and set options... msf postmaxthon run This module requires...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by