Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-4372

Malware in sbrugna...

6.5CVSS7.8AI score0.01617EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-4375

Malware in sbrugna...

7.5CVSS8.4AI score0.02287EPSS
Exploits0References9
Veracode
Veracode
added 2020/09/21 6:37 a.m.27 views

Denial Of Service (DoS)

firefox is vulnerable to denial of service DoS. The vulnerability exists through special resource URIs loaded with optional parameters following a ? in the parsed string...

7.5CVSS3.3AI score0.02287EPSS
Exploits0References5Affected Software3
RedhatCVE
RedhatCVE
added 2019/03/28 11:19 a.m.37 views

CVE-2018-12398

By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy CSP. This vulnerability affects Firefox 63...

6.5CVSS2.3AI score0.01617EPSS
Exploits0References2
NVD
NVD
added 2019/02/28 6:29 p.m.14 views

CVE-2018-12401

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service DOS attacks. This vulnerability affects Firefox 63...

7.5CVSS7.5AI score0.02287EPSS
Exploits0References5
Prion
Prion
added 2019/02/28 6:29 p.m.22 views

Spoofing

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service DOS attacks. This vulnerability affects Firefox 63...

5CVSS7.4AI score0.02287EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2019/02/28 6:29 p.m.4 views

CVE-2018-12398

By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy CSP. This vulnerability affects Firefox 63...

6.5CVSS7.3AI score0.01617EPSS
Exploits0References6
Cvelist
Cvelist
added 2019/02/28 6:0 p.m.17 views

CVE-2018-12401

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service DOS attacks. This vulnerability affects Firefox 63...

7.5AI score0.02287EPSS
Exploits0References5
CVE
CVE
added 2019/02/28 6:0 p.m.148 views

CVE-2018-12401

CVE-2018-12401 affects Mozilla Firefox prior to 63.0. The vulnerability is triggered by loading certain special resource URIs with optional parameters after a ‘?’, causing a non-exploitable crash and potential denial of service. No exploitation details are provided in the documents beyond this cr...

7.5CVSS7.4AI score0.02287EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2019/02/28 6:0 p.m.151 views

CVE-2018-12398

CVE-2018-12398 affects Firefox versions earlier than 63.0 and allows CSP bypass via stylesheet injection using a reflected URL in certain resource URIs (e.g., chrome:). Affected products are Firefox

6.5CVSS7AI score0.01617EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2018/10/24 12:0 a.m.28 views

CVE-2018-12398

By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy CSP. This vulnerability affects Firefox 63...

6.5CVSS6.9AI score0.01617EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/10/24 12:0 a.m.23 views

CVE-2018-12401

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service DOS attacks. This vulnerability affects Firefox 63...

7.5CVSS7.1AI score0.02287EPSS
Exploits0References3
OSV
OSV
added 2018/10/24 12:0 a.m.2 views

UBUNTU-CVE-2018-12401

Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service DOS attacks. This vulnerability affects Firefox 63...

7.5CVSS7.2AI score0.02287EPSS
Exploits0References4
0day.today
0day.today
added 2015/08/23 12:0 a.m.163 views

Firefox PDF.js Privileged Javascript Injection Exploit

This Metasploit module gains remote code execution on Firefox 35-36 by abusing a privilege escalation bug in resource:// URIs. PDF.js is used to exploit the bug. This exploit requires the user to click anywhere on the page to trigger the vulnerability. This module requires Metasploit:...

5CVSS0.3AI score0.67465EPSS
Exploits4
Rows per page
Query Builder