CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. source: http://www.securityfocus.com/bid/36592/info Palm WebOS is prone to an arbitrary-script-injection vulnerability because the integrated email application fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrar...

6.7AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Palm WebOS 1.0/1.1 'LunaSysMgr' Service Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36659/info Palm WebOS is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied data. Attackers can leverage this issue to cause an affected device to reboot. Given the natur...

7.1AI score

Exploits0

ATTACKERKB•added 2011/09/13 7:59 p.m.•2 views

CVE-2009-5098

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service crash via a web page containing a long string following a refresh tag, which triggers a floating point exception...

5.4CVSS5.5AI score0.04042EPSS

Exploits1References6

securityvulns•added 2011/08/12 12:0 a.m.•25 views

HP Palm WebOS crossite scripting

Crossite scripting in Contacts and Calendar applications...

4.3CVSS1AI score0.01463EPSS

Exploits0References2Affected Software1

NVD•added 2011/08/11 10:55 p.m.•18 views

CVE-2011-2408

Cross-site scripting XSS vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01463EPSS

Exploits0References2

NVD•added 2011/08/11 10:55 p.m.•19 views

CVE-2011-2409

Cross-site scripting XSS vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01463EPSS

Exploits0References2

Prion•added 2011/08/11 10:55 p.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01463EPSS

Exploits0References2Affected Software1

Cvelist•added 2011/08/11 10:0 p.m.•22 views

CVE-2011-2408

Cross-site scripting XSS vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01463EPSS

Exploits0References2

Cvelist•added 2011/08/11 10:0 p.m.•27 views

CVE-2011-2409

Cross-site scripting XSS vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01463EPSS

Exploits0References2

NVD•added 2011/05/13 5:5 p.m.•17 views

CVE-2011-1737

Multiple cross-site scripting XSS vulnerabilities in the Email application in HP Palm webOS 1.4.5 and 1.4.5.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.8AI score0.01728EPSS

Exploits0References3

NVD•added 2011/05/13 5:5 p.m.•15 views

CVE-2011-1738

HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit PDK applications, which allows local users to gain privileges by leveraging unintended filesystem write access...

7.2CVSS6.6AI score0.00488EPSS

Exploits0References3

Prion•added 2011/05/13 5:5 p.m.•14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Email application in HP Palm webOS 1.4.5 and 1.4.5.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01728EPSS

Exploits0References3Affected Software1

Cvelist•added 2011/05/13 5:0 p.m.•19 views

CVE-2011-1738

HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit PDK applications, which allows local users to gain privileges by leveraging unintended filesystem write access...

6.6AI score0.00488EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by