28 matches found
Foxit PDF Reader和Foxit PDF Editor 安全漏洞
Foxit PDF Reader and Foxit PDF Editor are products of Foxit Corporation, a Chinese company. Foxit PDF Reader is a PDF reader. Foxit PDF Editor is a PDF editor. Both Foxit PDF Editor and Foxit PDF Reader have security vulnerabilities. These vulnerabilities stem from improper control flow managemen...
EUVD-2005-3559
Malware in sbrugna...
EUVD-2010-2656
Malware in sbrugna...
SUSE CVE-2005-0591
Firefox before 1.0.1 allows remote attackers to spoof the 1 security and 2 download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file, aka "Firespoofing."...
SUSE CVE-2012-2877
The extension system in Google Chrome before 22.0.1229.79 does not properly handle modal dialogs, which allows remote attackers to cause a denial of service application crash via unspecified vectors...
SUSE CVE-2013-0794
Mozilla Firefox before 20.0 and SeaMonkey before 2.17 do not prevent origin spoofing of tab-modal dialogs, which allows remote attackers to conduct phishing attacks via a crafted web site...
SUSE CVE-2013-6636
The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 31.0.1650.63, makes an incorrect check for an empty document during presentation of a modal dialog, which allows remote attackers to spoof the address bar via vectors...
SUSE CVE-2015-6782
The Document::open function in WebKit/Source/core/dom/Document.cpp in Google Chrome before 47.0.2526.73 does not ensure that page-dismissal event handling is compatible with modal-dialog blocking, which makes it easier for remote attackers to spoof Omnibox content via a crafted web site...
DRUPAL-CONTRIB-2019-094
This project enables administrators to create modal dialogs. The routes used by the module lacked proper permissions, allowing untrusted users to access, create and modify modal configurations...
CVE-2017-7815
On pages containing an iframe, the "data:" protocol can be used to create a modal dialog through Javascript that will have an arbitrary domains as the dialog's location, spoofing of the origin of the modal dialog from the user view. Note: This attack only affects installations with e10 multiproce...
CVE-2017-7815
On pages containing an iframe, the "data:" protocol can be used to create a modal dialog through Javascript that will have an arbitrary domains as the dialog's location, spoofing of the origin of the modal dialog from the user view. Note: This attack only affects installations with e10 multiproce...
Google Chrome suffers from an unspecified vulnerability (CNVD-2015-07969)
Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the 'Document::open' function in the WebKit/Source/core/dom/Document.cpp file in versions of Google Chrome prior to 47.0.2526.73, which stems from the program's failure to ensure tha...
[SECURITY] Fedora 20 Update: drupal6-ctools-1.11-1.fc20
This suite is primarily a set of APIs and tools to improve the developer experience. It also contains a module called the Page Manager whose job is to manage pages. In particular it manages panel pages, but as it grows it will be able to manage far more than just Panels. For the moment, it includ...
Google Chrome < 31.0.1650.63 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 31.0.1650.63. It is, therefore, affected by the following vulnerabilities : - An error exists related to session fixation, the sync process and HTTP 302 redirects. CVE-2013-6634 - A use-after-free error exists related...
Google Chrome < 31.0.1650.63 Multiple Vulnerabilities (Mac OS X)
The version of Google Chrome installed on the remote Mac OS X host is a version prior to 31.0.1650.63. It is, therefore, affected by the following vulnerabilities : - An error exists related to session fixation, the sync process and HTTP 302 redirects. CVE-2013-6634 - A use-after-free error exist...
FreeBSD Ports: chromium
The remote host is missing an update to the system as announced in the referenced advisory. VID 5bae2ab4-0820-11e2-be5f-00262d5ed8ee OpenVAS Vulnerability Test $ Description: Auto generated from VID 5bae2ab4-0820-11e2-be5f-00262d5ed8ee Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Google Releases Chrome 22 and Pays Out Nearly $30K in Rewards
Google has released Chrome 22, a major new version of its browser that includes a huge number of security fixes, many of them high-priority vulnerabilities. The company also handed out nearly $30,000 in rewards to security researchers, more than half of it to Sergey Glazunov, who discovered two...
CVE-2012-2877
The extension system in Google Chrome before 22.0.1229.79 does not properly handle modal dialogs, which allows remote attackers to cause a denial of service application crash via unspecified vectors...
CVE-2012-2877
Removed by vendor...
Google Chrome multiple vulnerabilities - July 10
The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnjul10.nasl 5306 2017-02-16 09:00:16Z teissa $ Google Chrome multiple vulnerabilities - July 10 Authors: Madhuri D Copyright: Copyright c 2010 Greenbone Networks GmbH,...