15 matches found
SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2025:4006-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4006-1 advisory. This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to...
SUSE-SU-2025:4006-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to 140.4. changed: Account Hub is now disabled by default for second email account bmo1992027 changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 bmo1952100 fixed: Users could not read mail...
OPENSUSE-SU-2025:20026-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 140.4: changed: Account Hub is now disabled by default for second email account changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 fixed: Users could not read mail signed with OpenPGP v6 and PQC key...
EUVD-2013-0018
Malware in sbrugna...
Stored XSS - XSS in RSS link href attribute
📜 Description Cross-site scripting XSS is a type of security vulnerability that can be found in some web applications. XSS attacks enable attackers to inject client-side scripts into web pages viewed by other users. The persistent or stored XSS vulnerability is a more devastating variant of a...
MoinMoin Cross-site scripting (XSS) vulnerability
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin before 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
MoinMoin Multiple Vulnerabilities
MoinMoin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moinmo:moinmoin"; ifdescription...
MoinMoin rsslink() Function page_name Parameter XSS
The MoinMoin install hosted on the remote web server fails to properly sanitize user-supplied input in the 'pagename' parameter when creating an rss link. An attacker may be able to leverage this issue to inject arbitrary HTML and script code into a user's browser to be executed within the securi...
Cross site scripting
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
PYSEC-2013-23
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
PYSEC-2013-23
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
CVE-2012-6082
Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...
CVE-2012-6082
Removed by vendor...
WordPress 3.4.2 Cross Site Request Forgery
Exploit for php platform in category web applications ============================================================ Vulnerable Software: WordPress Version 3.4.2 Downloaded from: http://wordpress.org/latest.zip MD5SUM: d670508d81e2fd060c2041441bc03300 wordpress-3.4.2.zip...
Foxmail fmrsslink.dll RSSLINKLib.Rss AddUrl() Bug
Foxmail的fmrsslink.dll控件里IRss接口AddUrlURL, Info方法未检查网页提供的rss链接长度,当用户通过IE右键菜单收藏超长rss链接至Foxmail时,将导致栈溢出. .text:10001044 ; int stdcall AddUrlvoid thisptr, LPCWSTR lpURL, LPWSTR lpInfo .text:10001044 AddUrl proc near ; DATA XREF: .rdata:100041E0o .text:10001044 ; .rdata:10004244o .text:10001044...