Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.3 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2025:4006-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4006-1 advisory. This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to...

9.8CVSS7.2AI score0.00465EPSS
Exploits0References43
OSV
OSV
added 2025/11/10 8:0 a.m.3 views

SUSE-SU-2025:4006-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to 140.4. changed: Account Hub is now disabled by default for second email account bmo1992027 changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 bmo1952100 fixed: Users could not read mail...

9.8CVSS6.3AI score0.00465EPSS
Exploits0References35
OSV
OSV
added 2025/11/07 12:8 p.m.4 views

OPENSUSE-SU-2025:20026-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 140.4: changed: Account Hub is now disabled by default for second email account changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 fixed: Users could not read mail signed with OpenPGP v6 and PQC key...

9.8CVSS7.3AI score0.00465EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-0018

Malware in sbrugna...

4.3CVSS6.4AI score0.02095EPSS
Exploits1References13
Huntr
Huntr
added 2022/11/20 3:54 p.m.47 views

Stored XSS - XSS in RSS link href attribute

📜 Description Cross-site scripting XSS is a type of security vulnerability that can be found in some web applications. XSS attacks enable attackers to inject client-side scripts into web pages viewed by other users. The persistent or stored XSS vulnerability is a more devastating variant of a...

0.6AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/17 5:17 a.m.17 views

MoinMoin Cross-site scripting (XSS) vulnerability

Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin before 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...

4.3CVSS5.9AI score0.02095EPSS
Exploits1References9Affected Software1
OpenVAS
OpenVAS
added 2013/03/21 12:0 a.m.73 views

MoinMoin Multiple Vulnerabilities

MoinMoin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moinmo:moinmoin"; ifdescription...

6.4CVSS6.5AI score0.30566EPSS
Exploits10References8
Tenable Nessus
Tenable Nessus
added 2013/02/28 12:0 a.m.361 views

MoinMoin rsslink() Function page_name Parameter XSS

The MoinMoin install hosted on the remote web server fails to properly sanitize user-supplied input in the 'pagename' parameter when creating an rss link. An attacker may be able to leverage this issue to inject arbitrary HTML and script code into a user's browser to be executed within the securi...

6.4CVSS6.2AI score0.30566EPSS
Exploits8References2
Prion
Prion
added 2013/01/03 1:55 a.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...

4.3CVSS6.2AI score0.02095EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2013/01/03 1:55 a.m.25 views

PYSEC-2013-23

Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...

4.3CVSS4.4AI score0.02095EPSS
Exploits1References7
PyPA
PyPA
added 2013/01/03 1:55 a.m.7 views

PYSEC-2013-23

Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...

4.3CVSS6AI score0.02095EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2013/01/03 1:0 a.m.26 views

CVE-2012-6082

Cross-site scripting XSS vulnerability in the rsslink function in theme/init.py in MoinMoin 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the page name in a rss link...

5.6AI score0.02095EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2013/01/03 1:0 a.m.25 views

CVE-2012-6082

Removed by vendor...

4.3CVSS7AI score0.02095EPSS
Exploits1
0day.today
0day.today
added 2012/09/22 12:0 a.m.35 views

WordPress 3.4.2 Cross Site Request Forgery

Exploit for php platform in category web applications ============================================================ Vulnerable Software: WordPress Version 3.4.2 Downloaded from: http://wordpress.org/latest.zip MD5SUM: d670508d81e2fd060c2041441bc03300 wordpress-3.4.2.zip...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/04/10 12:0 a.m.21 views

Foxmail fmrsslink.dll RSSLINKLib.Rss AddUrl() Bug

Foxmail的fmrsslink.dll控件里IRss接口AddUrlURL, Info方法未检查网页提供的rss链接长度,当用户通过IE右键菜单收藏超长rss链接至Foxmail时,将导致栈溢出. .text:10001044 ; int stdcall AddUrlvoid thisptr, LPCWSTR lpURL, LPWSTR lpInfo .text:10001044 AddUrl proc near ; DATA XREF: .rdata:100041E0o .text:10001044 ; .rdata:10004244o .text:10001044...

7.1AI score
Exploits0
Rows per page
Query Builder