Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-4073

Malware in sbrugna...

9.3CVSS6.1AI score0.0339EPSS
Exploits1References11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

Sage 1.3.6 Extension Feed HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22493/info Sage Extension Feed is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Hostile HTML and script...

7.1AI score
Exploits0
myhack58
myhack58
added 2009/12/04 12:0 a.m.23 views

Firefox Sage extension RSS feeds cross-domain scripting vulnerability-vulnerability warning-the black bar safety net

Affected version: Mozilla Sage 1.4.3 vulnerability description: BUGTRAQ ID: 3 7 1 2 0 CVECAN ID: CVE-2 0 0 9-4 1 0 2 Sage is a Firefox the use of lightweight RSS and Atom aggregator Controller extension. Sage does not correctly filter the RSS feeds in the description tag input will be used to...

Exploits0
NVD
NVD
added 2009/11/29 1:8 p.m.26 views

CVE-2009-4102

Sage 1.4.3 and earlier extension for Firefox performs certain operations with chrome privileges, which allows remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via the description tag of an RSS feed...

9.3CVSS7.1AI score0.0339EPSS
Exploits1References9
Cvelist
Cvelist
added 2009/11/28 11:0 a.m.36 views

CVE-2009-4102

Sage 1.4.3 and earlier extension for Firefox performs certain operations with chrome privileges, which allows remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via the description tag of an RSS feed...

7AI score0.0339EPSS
Exploits1References9
Exploit DB
Exploit DB
added 2007/02/09 12:0 a.m.20 views

Sage 1.3.6 - Extension Feed HTML Injection

source: https://www.securityfocus.com/bid/22493/info Sage Extension Feed is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Hostile HTML and script code may be injected into vulnerabl...

7.4AI score
Exploits0
NVD
NVD
added 2007/01/11 11:28 p.m.11 views

CVE-2006-6919

Firefox Sage extension 1.3.8 and earlier allows remote attackers to execute arbitrary Javascript in the local context via an RSS feed with an img tag containing the script followed by an extra trailing "", which Sage modifies to close the img element before the malicious script...

6.8CVSS7.2AI score0.02067EPSS
Exploits1References5
CVE
CVE
added 2007/01/11 11:0 p.m.39 views

CVE-2006-6919

The CVE-2006-6919 vulnerability affects the Firefox Sage extension (version 1.3.8 and earlier). An RSS feed containing an img tag with an embedded script and a trailing ">" can be manipulated so Sage closes the img element before the malicious script is executed, enabling remote JavaScript exe...

6.8CVSS7.2AI score0.02067EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/01/11 11:0 p.m.15 views

CVE-2006-6919

Firefox Sage extension 1.3.8 and earlier allows remote attackers to execute arbitrary Javascript in the local context via an RSS feed with an img tag containing the script followed by an extra trailing "", which Sage modifies to close the img element before the malicious script...

7.2AI score0.02067EPSS
Exploits1References5
Rows per page
Query Builder