Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Hacker One
Hacker Oneadded 2025/11/19 9:7 p.m.21 views

Revive Adserver: Username Validation Bypass

Cricetinae Executive Summary The security patch in commit d239a0845e4f64fbacd25fff2854426734d43aa2 is INSUFFICIENT. Testing confirms that 3 out of 4 exploit vectors still bypass validation. --- Vulnerability Details Affected Component: Username validation in user registration/creation File:...

5.4CVSS6.6AI score0.00215EPSS
Exploits1
Hacker One
Hacker Oneadded 2019/07/12 4:29 p.m.74 views

Khan Academy: RTL override char allowed at khanacademy redirect page

Summary Attacker can embed RTLO character at the following URL https://www.khanacademy.org/computer-programming/linkredirector?url= to trick the user to download suspicious files. Steps to reproduce Visit https://www.khanacademy.org/computer-programming/linkredirector?url= add the following paylo...

6.9AI score
Exploits0
FreeBSD
FreeBSDadded 2010/03/16 12:0 a.m.36 views

mozilla -- multiple vulnerabilities

Mozilla Project reports: MFSA 2010-07 Fixes for potentially exploitable crashes ported to the legacy branch MFSA 2010-06 Scriptable plugin execution in SeaMonkey mail MFSA 2009-68 NTLM reflection vulnerability MFSA 2009-62 Download filename spoofing with RTL override MFSA 2009-59 Heap buffer...

10CVSS6.9AI score0.28167EPSS
Exploits48References6
Tenable Nessus
Tenable Nessusadded 2009/11/02 12:0 a.m.36 views

Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : firefox-3.0, firefox-3.5, xulrunner-1.9, xulrunner-1.9.1 vulnerabilities (USN-853-1)

Alin Rad Pop discovered a heap-based buffer overflow in Firefox when it converted strings to floating point numbers. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoki...

10CVSS8.1AI score0.28167EPSS
Exploits55References15
Tenable Nessus
Tenable Nessusadded 2009/10/29 12:0 a.m.64 views

FreeBSD : mozilla -- multiple vulnerabilities (c87aa2d2-c3c4-11de-ab08-000f20797ede)

Mozilla Foundation reports : MFSA 2009-64 Crashes with evidence of memory corruption rv:1.9.1.4/ 1.9.0.15 MFSA 2009-63 Upgrade media libraries to fix memory safety bugs MFSA 2009-62 Download filename spoofing with RTL override MFSA 2009-61 Cross-origin data theft through document.getSelection MFS...

10CVSS7.6AI score0.28167EPSS
Exploits54References28
securityvulns
securityvulnsadded 2009/10/28 12:0 a.m.61 views

Mozilla Foundation Security Advisory 2009-62

Mozilla Foundation Security Advisory 2009-62 Title: Download filename spoofing with RTL override Impact: Low Announced: October 27, 2009 Reporter: Jesse Ruderman, Sid Stamm Products: Firefox, SeaMonkey Fixed in: Firefox 3.5.4 Firefox 3.0.15 SeaMonkey 2.0 Description Mozilla security researchers...

9.3CVSS0.1AI score0.03183EPSS
Exploits2
Mozilla
Mozillaadded 2009/10/27 12:0 a.m.44 views

Download filename spoofing with RTL override — Mozilla

Mozilla security researchers Jesse Ruderman and Sid Stamm reported that when downloading a file containing a right-to-left override character RTL in the filename, the name displayed in the dialog title bar conflicts with the name of the file shown in the dialog body. An attacker could use this...

9.3CVSS1.7AI score0.03183EPSS
Exploits2References2Affected Software2
Rows per page
Query Builder