Lucene search
+L

69 matches found

Vulnrichment
Vulnrichment
added 2025/10/09 8:22 p.m.5 views

CVE-2025-35060 Newforma Info Exchange (NIX) stored XSS via SVG file upload

Newforma Info Exchange NIX provides a 'Send a File Transfer' feature that allows a remote, authenticated attacker to upload SVG files that contain JavaScript or other content that may be executed or rendered by a web browser using a mobile user agent...

5.5CVSS6.4AI score0.00201EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-6763

Malware in sbrugna...

4.3CVSS6.4AI score0.01792EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.7 views

SAMSUNG Internet 安全漏洞

SAMSUNG Internet is a cell phone application from the South Korean company Samsung SAMSUNG. It provides a browser function. A security vulnerability exists in SAMSUNG Internet versions prior to 26.0.3.1. An attacker could exploit the vulnerability to obtain sensitive information...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/03 12:0 a.m.4 views

Mozilla Focus 安全漏洞

Mozilla Focus is a browser for iOS devices from the Mozilla Foundation. Mozilla Focus for iOS is vulnerable to a spoofing vulnerability caused by an error related to the use of Javascript links. An attacker can exploit this vulnerability to spoof URL addresses in the Focus navigation bar...

4.7CVSS6.5AI score0.00256EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.6 views

Microsoft Edge 安全漏洞

Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. Microsoft Edge for iOS has a spoofing vulnerability that can be exploited by attackers to conduct spoofing attacks...

5.4CVSS6.2AI score0.00406EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/05/29 12:0 a.m.5 views

The vulnerability of Firefox browser for iOS arises from the lack of protection for website structure. This allows attackers to add unsafe elements to a page after a certain delay.

The vulnerability of Firefox browser for iOS is related to the lack of security measures for handling web page structures. Exploiting this vulnerability allows a malicious actor to add insecure elements to a page after a certain delay...

5CVSS5.4AI score0.00381EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2024/01/26 1:15 a.m.18 views

Spoofing

Microsoft Edge for Android Spoofing Vulnerability...

5CVSS7AI score0.00722EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/22 12:0 a.m.6 views

Mozilla Focus 安全漏洞

Mozilla Focus is a browser for iOS devices from the Mozilla Foundation. Mozilla Focus for iOS suffers from a cross-site scripting vulnerability that is caused by incorrect validation of user-supplied input. An attacker could exploit the vulnerability to steal the victim's cookie-based...

6.1CVSS6.1AI score0.00283EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/11/27 12:0 a.m.6 views

The vulnerability of Firefox’s Reader Mode in the iOS browser allows a hacker to gain unauthorized access to protected information and perform cross-site scripting attacks.

The vulnerability of Firefox’s Reader Mode for iOS relates to the lack of measures taken to eliminate HTML tags. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information and perform cross-site scripting attacks...

7.5CVSS6.1AI score0.0031EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.5 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A denial of service vulnerability exists in Mozilla Firefox for iOS, which can be exploited by attackers to cause the browser to crash...

6.5CVSS6.4AI score0.00486EPSS
Exploits0References4
Virtuozzo
Virtuozzo
added 2022/11/08 12:0 a.m.28 views

Virtuozzo Hybrid Infrastructure 5.3 (5.3.0-130)

In this release, Virtuozzo Hybrid Infrastructure provides a range of new features that cover Kubernetes as a Service, storage performance, security, monitoring and alerts, and the user interface. Additionally, this release delivers stability improvements and addresses issues found in previous...

0.5AI score
Exploits0
CNVD
CNVD
added 2022/06/15 12:0 a.m.47 views

WordPress Mobile browser color select plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS8.6AI score0.00831EPSS
Exploits0References1
NVD
NVD
added 2022/06/13 2:15 p.m.27 views

CVE-2022-1969

The Mobile browser color select plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.1. This is due to missing or incorrect nonce validation on the adminupdatedata function. This makes it possible for unauthenticated attackers to inject malicious...

8.8CVSS0.00831EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/06/13 1:15 p.m.8 views

CVE-2022-1969 Mobile browser color select <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Mobile browser color select plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.1. This is due to missing or incorrect nonce validation on the adminupdatedata function. This makes it possible for unauthenticated attackers to inject malicious...

8.8CVSS7.2AI score0.00831EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/06/13 1:15 p.m.36 views

CVE-2022-1969 Mobile browser color select <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Mobile browser color select plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.1. This is due to missing or incorrect nonce validation on the adminupdatedata function. This makes it possible for unauthenticated attackers to inject malicious...

8.8CVSS8.6AI score0.00831EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.3 views

WordPress plugin Mobile browser color select 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS5.5AI score0.00831EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2022/06/01 12:0 a.m.23 views

Mobile Browser Color Select <= 1.0.1 - Stored Cross-Site Scripting via CSRF

The plugin is lacking CSRF check in its adminupdatedata function, which could allow attackers to make a logged in admin call it, and perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escaping in the processed user input...

8.8CVSS4.3AI score0.00831EPSS
Exploits0Affected Software1
HackRead
HackRead
added 2022/05/21 9:18 p.m.22 views

5 Casual Games You Can Play on Your Mobile Browser Now

By Owais Sultan Online gaming has always been the buddy of leisure time because they allow us to bring some enjoyment… This is a post from HackRead.com Read the original post: 5 Casual Games You Can Play on Your Mobile Browser Now...

2AI score
Exploits0
OSV
OSV
added 2021/11/02 7:15 a.m.5 views

CVE-2021-33593

Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing...

5.3CVSS5.8AI score0.00685EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/11 12:0 a.m.4 views

Samsung Internet 安全漏洞

Samsung Internet is a cell phone application from Samsung South Korea. It provides a browser function. A security vulnerability previously existed in Samsung Internet 14.0.1.20, which allowed an attacker to perform privileged operations by exploiting the vulnerability...

7.8CVSS7.4AI score0.00228EPSS
Exploits0References1
Rows per page
Query Builder