Lucene search
K

2114 matches found

NVD
NVD
added 2007/01/26 1:28 a.m.22 views

CVE-2007-0534

Multiple cross-site scripting XSS vulnerabilities in the 1 Project issue tracking 4.7.0 through 5.x before 20070123 and 2 Project 4.6.0 through 5.x before 20070123 modules for Drupal allow remote authenticated users to inject arbitrary web script or HTML via a certain "fields on project nodes" or...

4.3CVSS5.5AI score0.01223EPSS
Exploits0References6
myhack58
myhack58
added 2007/01/23 12:0 a.m.21 views

Who control our browser-vulnerability warning-the black bar safety net

1 phenomenon? From about the beginning of this year, a lot of people will find, when browsing some websites, the address bar url will be somehow plus“? curtime=xxxxxxxxxx”is x is the number, and pop-up advertising window. A lot of people think this is the site your own pop-up advertising, also di...

6.8AI score
Exploits0
OSV
OSV
added 2006/07/27 8:4 p.m.1 views

DEBIAN-CVE-2006-3811

Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via Javascript that leads to memory corruption, including 1...

7.5CVSS9AI score0.0747EPSS
Exploits0References1
OSV
OSV
added 2006/07/07 12:5 a.m.2 views

DEBIAN-CVE-2006-3417

Tor client before 0.1.1.20 prefers entry points based on isfast or isstable flags, which could allow remote attackers to be preferred over nodes that are identified as more trustworthy "entry guard" isguard systems by directory authorities...

6.4CVSS6.9AI score0.02097EPSS
Exploits0References1
OSV
OSV
added 2006/07/07 12:5 a.m.2 views

DEBIAN-CVE-2006-3410

Tor before 0.1.1.20 creates "internal circuits" primarily consisting of nodes with "useful exit nodes," which allows remote attackers to conduct unspecified statistical attacks...

5CVSS7AI score0.01587EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/07/05 12:0 a.m.34 views

CentOS 4 : mozilla (CESA-2005:386)

Updated mozilla packages that fix various security bugs are now available. This update has been rated as having Important security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Vladimir V...

7.5CVSS6AI score0.10036EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2006/07/05 12:0 a.m.29 views

CentOS 4 : firefox (CESA-2006:0200)

An updated firefox package that fixes several security bugs is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Igor Bukanov discovered a bug in the way Firefox's JavaScript interpret...

7.5CVSS6AI score0.12589EPSS
Exploits0References6
Prion
Prion
added 2006/05/15 10:2 a.m.19 views

Design/Logic Flaw

NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter...

5CVSS6.3AI score0.0555EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2006/05/15 10:2 a.m.15 views

CVE-2006-2356

NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter...

5CVSS6AI score0.0555EPSS
Exploits1References6
Cvelist
Cvelist
added 2006/05/15 10:0 a.m.20 views

CVE-2006-2356

NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter...

6AI score0.0555EPSS
Exploits1References6
securityvulns
securityvulns
added 2006/05/12 12:0 a.m.61 views

Ipswitch WhatsUp Professional multiple flaws

WhatsUp is a tool from Ipswitch to monitor application and network, embedding a custom web server on port 8022. Description: This custom web server is prone to multiple flaws. -as authenticated user: src disclosure http://server:8022/NmConsole/Login.asp. there are many XSS flaws, as...

0.1AI score
Exploits0
Prion
Prion
added 2006/02/21 2:2 a.m.16 views

Information disclosure

MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...

6.4CVSS7.2AI score0.01596EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2006/02/21 2:2 a.m.16 views

CVE-2006-0808

MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...

6.4CVSS6.6AI score0.01596EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/02/21 2:0 a.m.25 views

CVE-2006-0808

MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...

6.6AI score0.01596EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/02/02 3:50 p.m.45 views

Critical: Red Hat Security Advisory: firefox security update

An updated firefox package that fixes several security bugs is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Igor Bukanov discovered a bug in the way Firefox's Javascript interpret...

7.5CVSS6.1AI score0.12589EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.33 views

Ubuntu 5.04 : mozilla-firefox, mozilla vulnerabilities (USN-124-1)

When a popup is blocked the user is given the ability to open that popup through the popup-blocking status bar icon and, in Firefox, through the information bar. Doron Rosenberg noticed that popups which are permitted by the user were executed with elevated privileges, which could be abused to...

7.5CVSS6AI score0.08283EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2005/08/23 12:0 a.m.33 views

Debian DSA-779-2 : mozilla-firefox - several vulnerabilities

We experienced that the update for Mozilla Firefox from DSA 779-1 unfortunately was a regression in several cases. Since the usual praxis of backporting apparently does not work, this update is basically version 1.0.6 with the version number rolled back, and hence still named 1.0.4-. For...

7.5CVSS6.5AI score0.68097EPSS
Exploits12References17
Tenable Nessus
Tenable Nessus
added 2005/08/23 12:0 a.m.41 views

Debian DSA-781-1 : mozilla-thunderbird - several vulnerabilities

Several problems have been discovered in Mozilla Thunderbird, the standalone mail client of the Mozilla suite. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-0989 Remote attackers could read portions of heap memory into a JavaScript string via the...

7.5CVSS6.2AI score0.68097EPSS
Exploits7References11
OSV
OSV
added 2005/08/21 12:0 a.m.30 views

DSA-779-2 mozilla-firefox - several

Bulletin has no description...

7.5CVSS6.5AI score0.68097EPSS
Exploits9
Cent OS
Cent OS
added 2005/07/22 3:22 p.m.81 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2005:601 Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References8
Rows per page
Query Builder