Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

BDU FSTEC
BDU FSTECadded 2019/08/20 12:0 a.m.17 views

The vulnerability of the NPAPI plugin in browsers such as Firefox ESR, Firefox, and the email client Thunderbird allows a hacker to perform cross-site forgery attacks.

The vulnerability of the NPAPI plugin for Firefox ESR, Firefox, and the Thunderbird email client relates to exploiting the Cross-origin Resource Sharing CORS mechanism. Exploiting this vulnerability allows a remote attacker to perform cross-origin requests...

9.3CVSS5.5AI score0.01047EPSS
Exploits0References15Affected Software7
RedHat Linux
RedHat Linuxadded 2019/07/11 6:17 p.m.4 views

Mozilla: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects

POST requests made by NPAPI plugins, such as Flash, that receive a status 308 redirect response can bypass CORS requirements. This can allow an attacker to perform Cross-Site Request Forgery CSRF attacks. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.8CVSS7.4AI score0.01047EPSS
Exploits0References5
OSV
OSVadded 2018/06/27 12:0 a.m.0 views

UBUNTU-CVE-2018-12364

NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin requests, bypassing CORS by making a same-origin POST that does a 307 redirect to the target site. This allows for a malicious site to engage in cross-site request forgery CSRF attacks. This vulnerability affects Thunderbird 60,...

8.8CVSS7AI score0.01733EPSS
Exploits0References7
OSV
OSVadded 2016/03/08 12:0 a.m.4 views

UBUNTU-CVE-2016-1966

The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service invalid pointer dereference and memory corruption via a crafted NPAPI plug...

8.8CVSS7.7AI score0.02939EPSS
Exploits0References5
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.12 views

xloadimage 4.1 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3006/info xloadimage is a utility used for displaying images of varying formats on X11 servers. xloadimage and possibly derivatives such as 'xli' contain a buffer overflow vulnerability in the handling of the 'Faces...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2004/08/20 12:0 a.m.11 views

Netscape/Mozilla Navigator Plugin Path Disclosure (deprecated)

Binary data 1313.prm...

7.3AI score
Exploits0
securityvulns
securityvulnsadded 2001/01/16 12:0 a.m.22 views

Дырка в Macromedia Flash

Переполнение буфреа в плагине к Netscape...

1.9AI score
Exploits0References1
securityvulns
securityvulnsadded 2000/08/15 12:0 a.m.23 views

Переполнение буфера в MacroMedia Flash-плагине для Netscape

Переполнение буфера в strcpy...

1.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder