Lucene search
K

6975 matches found

exploitpack
exploitpack
added 2002/10/15 12:0 a.m.12 views

Microsoft Internet Explorer 56 - Unauthorized Document Object Model Access

Microsoft Internet Explorer 56 - Unauthorized Document Object Model Access source: https://www.securityfocus.com/bid/5963/info Microsoft Internet Explorer MSIE is prone to a vulnerability that may enable a frame or iframe to gain unauthorized access to the Document Object Model DOM of other...

0.6AI score
Exploits0
NVD
NVD
added 2002/08/12 4:0 a.m.21 views

CVE-2002-0815

The Javascript "Same Origin Policy" SOP, as implemented in 1 Netscape, 2 Mozilla, and 3 Internet Explorer, allows a remote web server to access HTTP and SOAP/XML content from restricted sites by mapping the malicious server's parent DNS domain name to the restricted site, loading a page from the...

7.5CVSS6.2AI score0.03661EPSS
Exploits0References2
CVE
CVE
added 2002/08/01 4:0 a.m.58 views

CVE-2002-0815

The CVE-2002-0815 entry describes a vulnerability in the Javascript Same Origin Policy (SOP) as implemented by Netscape, Mozilla, and Internet Explorer. The root cause is that code running in one frame can access content from a restricted site due to the ability to map the attacker’s parent domai...

7.5CVSS6.7AI score0.03661EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2002/08/01 4:0 a.m.26 views

CVE-2002-0815

The Javascript "Same Origin Policy" SOP, as implemented in 1 Netscape, 2 Mozilla, and 3 Internet Explorer, allows a remote web server to access HTTP and SOAP/XML content from restricted sites by mapping the malicious server's parent DNS domain name to the restricted site, loading a page from the...

6.2AI score0.03661EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2002/07/10 12:0 a.m.37 views

Microsoft Internet Explorer 5/6 - OBJECT Tag Same Origin Policy Violation

source: https://www.securityfocus.com/bid/5196/info Microsoft Internet Explorer allows script code to violate the same origin policy through usage of the HTML OBJECT tag. Malicious script code may obtain a legitimate reference to an embedded object containing a web page from the same domain. This...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/07/10 12:0 a.m.11 views

Microsoft Internet Explorer 56 - OBJECT Tag Same Origin Policy Violation

Microsoft Internet Explorer 56 - OBJECT Tag Same Origin Policy Violation source: https://www.securityfocus.com/bid/5196/info Microsoft Internet Explorer allows script code to violate the same origin policy through usage of the HTML OBJECT tag. Malicious script code may obtain a legitimate referen...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/05/15 12:0 a.m.23 views

Opera 5.12/6.0 - Frame Location Same Origin Policy Circumvention

source: https://www.securityfocus.com/bid/4745/info Opera is a web browser product created by Opera Software, and is available for a range of operating systems including Windows and Linux. A vulnerability has been reported in some versions of the Opera Browser. It is possible to bypass the same...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/05/15 12:0 a.m.10 views

Opera 5.126.0 - Frame Location Same Origin Policy Circumvention

Opera 5.126.0 - Frame Location Same Origin Policy Circumvention source: https://www.securityfocus.com/bid/4745/info Opera is a web browser product created by Opera Software, and is available for a range of operating systems including Windows and Linux. A vulnerability has been reported in some...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/04/16 12:0 a.m.27 views

Microsoft Internet Explorer 5 - Dialog Same Origin Policy Bypass Variant (MS02-047)

source: https://www.securityfocus.com/bid/5561/info Microsoft Internet Explorer includes support for dialog windows through script calls to the two functions showModalDialog and showModelessDialog. These functions accept a URL location for the dialog content, and an option argument parameter to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/04/16 12:0 a.m.15 views

Microsoft Internet Explorer 5 - Dialog Same Origin Policy Bypass Variant (MS02-047)

Microsoft Internet Explorer 5 - Dialog Same Origin Policy Bypass Variant MS02-047 source: https://www.securityfocus.com/bid/5561/info Microsoft Internet Explorer includes support for dialog windows through script calls to the two functions showModalDialog and showModelessDialog. These functions...

0.2AI score
Exploits0
CERT
CERT
added 2001/12/21 12:0 a.m.20 views

Microsoft Internet Explorer does not properly handle document.open()

Overview Microsoft Internet Explorer contains a vulnerability in which a script from one source is permitted to access files on the client's file system. An attacker may be able to read cookies and other files on a target system, and spoof Internet sites by creating believable window titles...

7.5CVSS7AI score0.1932EPSS
Exploits1References5
securityvulns
securityvulns
added 2001/11/16 12:0 a.m.20 views

Several javascript vulnerabilities in Opera

Georgi Guninski security advisory 51, 2001 Several javascript vulnerabilities in Opera Systems affected: Opera 5.12/Windows, Opera 5.0/Linux - probably other versions Risk: Medium Date: 15 November 2001 Legal Notice: This Advisory is Copyright c 2001 Georgi Guninski. You may distribute it...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2001/11/15 12:0 a.m.30 views

Opera 5.0/5.1 - Same Origin Policy Circumvention

source: https://www.securityfocus.com/bid/3553/info Opera is a popular, freely available web browser that is supported across many different platforms. Opera is prone to an issue which may allow for the execution of script code across domains, allowing for circumvention of the web browser's...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2001/11/15 12:0 a.m.17 views

Opera 5.05.1 - Same Origin Policy Circumvention

Opera 5.05.1 - Same Origin Policy Circumvention source: https://www.securityfocus.com/bid/3553/info Opera is a popular, freely available web browser that is supported across many different platforms. Opera is prone to an issue which may allow for the execution of script code across domains,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.59 views

msie.5.dhtml.cuartango.txt

Date: Wed, 24 Mar 1999 12:11:09 +0100 From: Juan Carlos Garcia Cuartango To: [email protected] Subject: IE 5 security vulnerabilities Greetings, Microsoft delivers with IE 5 an Active X control called "DHTML Edit control Safe for Scripting for IE 5". In my opinion this control IS N...

7.4AI score
Exploits0
Rows per page
Query Builder