6 matches found
ROS-20240923-02
Vulnerability of ANGLE library in Mozilla Firefox, Firefox ESR and Thunderbird email client browsers is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...
The vulnerability of full-screen notifications in the Mozilla Firefox and Firefox Focus browsers on Android operating systems allows a perpetrator to compromise data integrity.
The vulnerability of full-screen notifications in Mozilla Firefox and Firefox Focus browsers on Android operating systems is related to errors in processing pop-up notifications. Exploiting this vulnerability can allow a malicious actor to compromise data integrity from a remote location...
ROS-20230622-08
Mozilla Thunderbird email client vulnerability is related to a boundary error in FileReader::DoReadData when reading a file. Exploitation of the vulnerability could allow an attacker acting remotely to cause memory corruption and execute arbitrary code on the target system. memory corruption and...
Cross-site Scripting (XSS)
librenms/librenms is vulnerable to cross-site scripting.The vulnerability exists in destroy function of DeviceGroupController.php and PortGroupController.php due to insufficient input validation in the pop-up notifications which allows an attacker to inject and execute malicious javaScript...
Stored Cross-Site Scripting (XSS)
Description There is insufficient input validation in the pop-up notifications. Proof of Concept Steps to reproduce: 1. Log in to an admin account 2. Click on Services - Services Templates 3. Create a new Service Template with the Name alertdocument.location 4. The XSS is triggered when the...
Stored Cross-Site Scripting (XSS)
Description There is insufficient input validation in the pop-up notifications. Proof of Concept Steps to reproduce: 1. Log in to an admin account 2. Click on Ports - Manage Groups 3. Create a new Port Group with the Name alertdocument.location and an arbitrary Description 4. The XSS is triggered...