80 matches found
Exploit for Type Confusion in Mozilla Firefox
CVE-2024-8381 A SpiderMonkey Interpreter Type Confusion Bug...
Ubuntu: Security Advisory (USN-6992-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6992-1)
The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6992-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially explo...
TeamPass 信息泄露漏洞
TeamPass is an open source password manager from the individual developer Nils Laumaillé. An information disclosure vulnerability exists in versions prior to TeamPass 3.0.10, which originates from exposing sensitive information to unauthorized participants...
TeamPass 跨站脚本漏洞
TeamPass is an open source password manager from the individual developer Nils Laumaillé. TeamPass suffers from a cross-site scripting vulnerability that stems from the presence of a stored-type cross-site scripting vulnerability...
TeamPass 跨站脚本漏洞
TeamPass is an open source password manager from the individual developer Nils Laumaillé. A cross-site scripting vulnerability exists in versions prior to TeamPass 3.0.9. An attacker could exploit this vulnerability to perform cross-site scripting XSS attacks...
TeamPass 安全漏洞
TeamPass is an open source password manager from the individual developer Nils Laumaillé. A security vulnerability exists in versions prior to TeamPass 3.0.9 that stems from improperly escaping output encoding...
USN-5464-1: E2fsprogs vulnerability | Cloud Foundry
usn-5464-1 Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description Nils Bars discovered that e2fsprogs incorrectly handled certain file systems. A local attacker could use this issue with a crafted file system image to possibly execute...
Ubuntu: Security Advisory (USN-5464-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mozilla Firefox Security Advisory (MFSA2015-10) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
8x8: [jitsi-meet] Authentication Bypass when using JWT w/ public keys
A Prosody module allows the use of symmetrical algorithms to validate JWTs. This means that tokens generated by arbitrary sources can be used to gain authorization to protected rooms. There are no known incidents related to this vulnerability. Please refer to the published advisory:...
Ubuntu 16.04 LTS / 18.04 LTS : LibreOffice vulnerabilities (USN-4063-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4063-1 advisory. Nils Emmerich discovered that LibreOffice incorrectly handled LibreLogo scripts. If a user were tricked into opening a specially crafted...
Cross-Site Scripting (XSS)
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
CVE-2018-18492: Mozilla Firefox Select Element Use-After-Free
Firefox is a free and open-source web browser developed by the Mozilla Foundation. A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection, which gets garbage collected, and results in a potentially...
nils-diewald.de XSS vulnerability
Open Bug Bounty ID: OBB-695265 Description| Value ---|--- Affected Website:| nils-diewald.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Virtuozzo 7 : firefox (VZLSA-2017-1106)
An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
thunderbird security update
CentOS Errata and Security Advisory CESA-2017:1561 An update for thunderbird is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...
firefox security update
CentOS Errata and Security Advisory CESA-2017:1440 An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score,...
RHEL 6 / 7 : firefox (RHSA-2017:1440)
The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2017:1440 advisory. Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 52.2.0 ESR. Security Fixes: Multiple flaws were...
RedHat Update for firefox RHSA-2017:1440-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...