CVE-2024-10938 OVRI Payment 1.7.0 - Malicious .htaccess directive

The OVRI Payment plugin for WordPress contains malicious .htaccess files in version 1.7.0. The files contain directives to prevent the execution of certain scripts while allowing execution of known malicious PHP files. If moved outside of the plugin's directory, they may interfere with the proper...

PT-2026-22327

The OVRI Payment plugin for WordPress contains malicious .htaccess files in version 1.7.0. The files contain directives to prevent the execution of certain scripts while allowing execution of known malicious PHP files. If moved outside of the plugin's directory, they may interfere with the proper...

EUVD-2018-8768

Malware in sbrugna...

CVE-2018-16983

NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other products, allows attackers to bypass script blocking via the text/html;/json Content-Type value...

Design/Logic Flaw

NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other products, allows attackers to bypass script blocking via the text/html;/json Content-Type value...

CVE-2018-16983

NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other products, allows attackers to bypass script blocking via the text/html;/json Content-Type value...

CVE-2018-16983

NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other products, allows attackers to bypass script blocking via the text/html;/json Content-Type value...

CVE-2018-16983

CVE-2018-16983 affects NoScript Classic prior to 5.1.8.7 (used in Tor Browser 7.x and other products). The issue lets an attacker bypass script blocking by manipulating the Content-Type value text/html;/json, enabling bypass of the NoScript protection. Impact is described as content-script/script...

CVE-2018-16983

Removed by vendor...

Microsoft IE属性移除远程代码执行漏洞 (MS12-044)

CVE ID: CVE-2012-1524 Microsoft Internet Explorer是微软公司推出的一款网页浏览器。 Internet Explorer访问已经删除的对象时存在安全漏洞，可通过执行任意代码破坏内存。 0 Microsoft Internet Explorer 临时解决方法： 如果您不能立刻安装补丁或者升级，NSFOCUS建议您采取以下措施以降低威胁： 将互联网和本地内联网安全区域设置为“高”阻止这些区域中的ActiveX控件和活动脚本。 将IE配置为运行活动脚本之前提示或禁止。 厂商补丁： Microsoft ---------...

SeaMonkey 2.x < 2.10 Multiple Vulnerabilities

Binary data 6496.prm...

Thunderbird 10.0.x < 10.0.5 Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird 10.0.x is potentially affected by the following security issues : - An error exists in the ASN.1 decoder when handling zero length items that can lead to application crashes. CVE-2012-0441 - Multiple memory corruption errors exist. CVE-2012-1937, CVE-2012-1939...

Facebook Vulnerability - Beware of A New XSS on Facebook !

Facebook Vulnerability - Beware of A New XSS on Facebook ! Url : https://m.facebook.com/connect/promptfeed.php?display=wap&usermessageprompt=%3Cscript%3Ealert%281 %29%3C/script%3E New Cross-site scripting vulnerability has been detected on Facebook and widely exploited in the mobile API version,...

CVE-2008-4698

Opera before 9.61 does not properly block scripts during preview of a news feed, which allows remote attackers to create arbitrary new feed subscriptions and read the contents of arbitrary feeds...