EUVD-2020-6350

Malware in sbrugna...

CVE-2020-14194

Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link...

Atlassian Jira 8.6.x < 8.13.7 Reverse Tabnapping Via Project Shortcuts

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.15, 8.6.x 8.13.7, 8.14.0 8.17.1 or 8.18.0 8.18.1. It is, therefore, affected by a vulnerability in the Project Shortcuts feature which allows remote attackers to redirect...

Atlassian Jira 8.14.0 < 8.17.1 Reverse Tabnapping Via Project Shortcuts

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.15, 8.6.x 8.13.7, 8.14.0 8.17.1 or 8.18.0 8.18.1. It is, therefore, affected by a vulnerability in the Project Shortcuts feature which allows remote attackers to redirect...

CVE-2021-39112

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The affected versions are before version 8.5.15, from version 8.6.0 before 8.13.7, from version 8.14.0...

Design/Logic Flaw

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The affected versions are before version 8.5.15, from version 8.6.0 before 8.13.7, from version 8.14.0...

CVE-2021-39112

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The affected versions are before version 8.5.15, from version 8.6.0 before 8.13.7, from version 8.14.0...

CVE-2021-39112

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The affected versions are before version 8.5.15, from version 8.6.0 before 8.13.7, from version 8.14.0...

CVE-2020-14194

Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link...

CVE-2020-14194

Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link...

Design/Logic Flaw

Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link...

CVE-2020-14194

Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link...

CVE-2020-14194

CVE-2020-14194 affects Zulip Server prior to 2.1.5. The issue is a reverse tabnapping vulnerability triggered by a topic header link, enabling tabnabbing conditions in the Zulip web UI. Exploitation details are not provided beyond the reverse tabnapping description in the connected documents; no ...

Reverse Tabnapping

swagger-ui is vulnerable to reverse tabnabbing. The anchor tags uses target='blank' which would allow attackers to access window.opener for the original page to perform phising attacks...

GHSA-X9P2-FXQ6-2M5F Reverse Tabnapping in swagger-ui

Versions of swagger-ui prior to 3.18.0 are vulnerable to Reverse Tabnapping. The package uses target='blank' in anchor tags, allowing attackers to access window.opener for the original page. This is commonly used for phishing attacks. Recommendation Upgrade to version 3.18.0 or later...

Reverse Tabnapping in swagger-ui

Versions of swagger-ui prior to 3.18.0 are vulnerable to Reverse Tabnapping. The package uses target='blank' in anchor tags, allowing attackers to access window.opener for the original page. This is commonly used for phishing attacks. Recommendation Upgrade to version 3.18.0 or later...

Reverse Tabnapping

Overview Versions of swagger-ui prior to 3.18.0 are vulnerable to Reverse Tabnapping. The package uses target='blank' in anchor tags, allowing attackers to access window.opener for the original page. This is commonly used for phishing attacks. Recommendation Upgrade to version 3.18.0 or later...