Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-18937

Malware in sbrugna...

5.3CVSS5.6AI score0.01172EPSS
Exploits0References2
OSV
OSV
added 2021/08/26 3:15 p.m.6 views

CVE-2021-32076

Access Restriction Bypass via referrer spoof was discovered in SolarWinds Web Help Desk 12.7.2. An attacker can access the 'Web Help Desk Getting Started Wizard', especially the admin account creation page, from a non-privileged IP address network range or loopback address by intercepting the HTT...

5.3CVSS5.8AI score0.01172EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/08/26 12:0 a.m.5 views

PT-2021-19656 · Solarwinds · Solarwinds Web Help Desk

Name of the Vulnerable Software and Affected Versions: SolarWinds Web Help Desk version 12.7.2 Description: A security issue was discovered, allowing access restriction bypass via referrer spoof. An attacker can access the "Web Help Desk Getting Started Wizard", specifically the admin account...

5.3CVSS5.3AI score0.01172EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2009/01/23 12:0 a.m.42 views

SuSE Update for MozillaFirefox SUSE-SA:2008:019

Check for the Version of MozillaFirefox OpenVAS Vulnerability Test $Id: gbsuse2008019.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for MozillaFirefox SUSE-SA:2008:019 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program i...

9.3CVSS0.5AI score0.06055EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2008/04/22 12:0 a.m.58 views

openSUSE 10 Security Update : mozilla-xulrunner (mozilla-xulrunner-5163)

This update brings the Mozilla XULRunner engine to security update version level 1.1.9 Following security problems were fixed : - MFSA 2008-19/CVE-2008-1241: XUL popup spoofing variant cross-tab popups - MFSA 2008-18/CVE-2008-1195 and CVE-2008-1240: Java socket connection to any local port via...

9.3CVSS8.8AI score0.06055EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2008/04/18 12:0 a.m.39 views

SuSE 10 Security Update : epiphany (ZYPP Patch Number 5164)

This update fixes security issues also fixes in the Mozilla Firefox 2.0.0.13 update round. Following security problems were fixed : - XUL popup spoofing variant cross-tab popups. MFSA 2008-19 / CVE-2008-1241 - Java socket connection to any local port via LiveConnect. MFSA 2008-18 / CVE-2008-1195 ...

9.3CVSS8.4AI score0.06055EPSS
Exploits2References26
Tenable Nessus
Tenable Nessus
added 2008/04/11 12:0 a.m.52 views

openSUSE 10 Security Update : seamonkey (seamonkey-5153)

This update brings Mozilla SeaMonkey to security update version 1.1.9 Following security problems were fixed : - MFSA 2008-19/CVE-2008-1241: XUL popup spoofing variant cross-tab popups - MFSA 2008-18/CVE-2008-1195 and CVE-2008-1240: Java socket connection to any local port via LiveConnect - MFSA...

9.3CVSS8.8AI score0.06055EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2008/04/01 12:0 a.m.33 views

SuSE 10 Security Update : Security update for (ZYPP Patch Number 5134)

This update brings Mozilla Firefox to security update version 2.0.0.13 Following security problems were fixed : - XUL popup spoofing variant cross-tab popups. MFSA 2008-19 / CVE-2008-1241 - Java socket connection to any local port via LiveConnect. MFSA 2008-18 / CVE-2008-1195 / CVE-2008-1240 -...

9.3CVSS8.4AI score0.06055EPSS
Exploits2References26
Tenable Nessus
Tenable Nessus
added 2008/03/31 12:0 a.m.39 views

openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-5135)

This update brings Mozilla Firefox to security update version 2.0.0.13 Following security problems were fixed : - MFSA 2008-19/CVE-2008-1241: XUL popup spoofing variant cross-tab popups - MFSA 2008-18/CVE-2008-1195 and CVE-2008-1240: Java socket connection to any local port via LiveConnect - MFSA...

9.3CVSS8.8AI score0.06055EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2008/03/27 12:50 a.m.4 views

Referrer spoofing bug

Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote attackers to bypass application protection mechanisms that rely ...

5CVSS7.4AI score0.02443EPSS
Exploits2References4
securityvulns
securityvulns
added 2008/03/26 12:0 a.m.104 views

Mozilla Foundation Security Advisory 2008-16

Mozilla Foundation Security Advisory 2008-16 Title: HTTP Referrer spoofing with malformed URLs Impact: Moderate Announced: March 25, 2008 Reporter: Gregory Fleischer, RSnake Products: Firefox, SeaMonkey Fixed in: Firefox 2.0.0.13 SeaMonkey 1.1.9 Description Security researcher Gregory Fleischer...

5CVSS0.1AI score0.02443EPSS
Exploits2
FreeBSD
FreeBSD
added 2008/03/26 12:0 a.m.56 views

mozilla -- multiple vulnerabilities

The Mozilla Foundation reports of multiple security issues in Firefox, Seamonkey, and Thunderbird. Several of these issues can probably be used to run arbitrary code with the privilege of the user running the program. MFSA 2008-19 XUL popup spoofing variant cross-tab popups MFSA 2008-18 Java sock...

9.3CVSS7.5AI score0.06055EPSS
Exploits2
securityvulns
securityvulns
added 2008/03/22 12:0 a.m.49 views

[MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling.

MSA01240108: IE7 allows overwriting of several headers leading to Http request Splitting and smuggling. Date: March 21th, 2008 Tested Versions: Internet Explorer 7.0.5730.11 Tested OS: Windows XP Professional SP2 Italian Minded Security ReferenceID: MSA02240108 Credits: Discovery by Stefano Di...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/05/25 12:0 a.m.62 views

"Exploiting the XmlHttpRequest object in IE" - paper by Amit Klein

Exploiting the XmlHttpRequest object in IE - Referrer spoofing, and a lot more... Amit Klein, September 2005 Preface ======= This paper is released in a bit of haste, and as such, it may be somewhat incomplete. The reason is that I was toying with the concepts and techniques outlined in it for th...

6.2AI score
Exploits0
Rows per page
Query Builder