27 matches found
EUVD-2009-3002
Malware in sbrugna...
EUVD-2009-3001
Malware in sbrugna...
EUVD-2009-2999
Malware in sbrugna...
EUVD-2009-3000
Malware in sbrugna...
EUVD-2009-2995
Malware in sbrugna...
SUSE CVE-2009-1312
Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting XSS attacks via vectors related to 1 injecting a Refresh header or 2 specifying the content of a Refresh header. NOTE...
SUSE CVE-2018-19516
messagepartthemes/default/defaultrenderer.cpp in messagelib in KDE Applications before 18.12.0 does not properly restrict the handling of an http-equiv="REFRESH" value...
Oracle WebCenter Sites Satellite Server - HTTP Header Injection
Oracle WebCenter Sites Satellite Server - HTTP Header Injection SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: HTTP header injection/Cache poisoning in Oracle WebCenter Sites Satellite Server product: Oracle WebCenter...
New vulnerabilities in OpenX
Hello 3APA3A! I want to warn you about Denial of Service, Cross-Site Scripting and Redirector vulnerabilities in OpenX. DoS Looped DoS: http://site/adclick.php About Looped DoS I wrote in my classification of DoS vulnerabilities in web applications http://websecurity.com.ua/2663/. Vulnerable are...
Orca Browser 'javascript:' And 'data:' URI XSS Vulnerability
This host is installed with Orca Browser Browser and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gborcabrowserjsndataurixssvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ Orca Browser 'javascript:' And 'data:' URI XSS Vulnerability Authors: Sharath S Copyright:...
Google Chrome 'javascript: URI' XSS Vulnerability - Sep09
This host is installed with Google Chrome Web Browser and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbgooglechromejsurixssvulnsep09.nasl 4869 2016-12-29 11:01:45Z teissa $ Google Chrome 'javascript: URI' XSS Vulnerability - Sep09 Authors: Sharath S Copyright:...
Google Chrome 'javascript: URI' XSS Vulnerability (Sep 2009)
Google Chrome Web Browser is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apple Safari 'javascript: URI' XSS Vulnerability - Sep09
This host is installed with Apple Safari Web Browser and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbapplesafarijsurixssvulnsep09.nasl 4865 2016-12-28 16:16:43Z teissa $ Apple Safari 'javascript: URI' XSS Vulnerability - Sep09 Authors: Sharath S Copyright:...
Apple Safari 'javascript: URI' XSS Vulnerability (Sep 2009)
Apple Safari Web Browser is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2009-3015
QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and data: URIs in Refresh and Location headers in HTTP responses, which allows remote attackers to conduct cross-site scripting XSS attacks via vectors related to 1 injecting a Refresh header that contains a javascript: URI, 2...
PT-2009-5350 · Mozilla · Firefox +1
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 3.0.13 and earlier Mozilla Firefox version 3.5 Mozilla Firefox version 3.6 a1 pre Mozilla Firefox version 3.7 a1 pre SeaMonkey version 1.1.17 Mozilla versions 1.7.x and earlier Description: The issue allows remote...
Opera Web Browser 'Refresh' Header XSS Vulnerabilities - Windows
Opera Web Browser is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome Cross-Site Scripting Vulnerability - July09
This host has Google Chrome installed and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbgooglechromexssvulnjul09.nasl 4869 2016-12-29 11:01:45Z teissa $ Google Chrome Cross-Site Scripting Vulnerability - July09 Authors: Sharath S Copyright: Copyright c 2009...
Microsoft Internet Explorer XSS Vulnerability (Jul 2009)
Internet Explorer is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Opera Web Browser 'Refresh' Header XSS Vulnerabilities - Linux
Opera Web Browser is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...