Lucene search
K

28 matches found

NVD
NVD
added 2011/05/03 10:55 p.m.20 views

CVE-2011-1440

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets CSS token sequences...

6.8CVSS7AI score0.01598EPSS
Exploits2References9
Prion
Prion
added 2011/05/03 10:55 p.m.19 views

Design/Logic Flaw

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets CSS token sequences...

6.8CVSS7.6AI score0.01598EPSS
Exploits2References9Affected Software4
Prion
Prion
added 2011/04/27 12:55 a.m.17 views

Cross site scripting

The checkCss function in includes/Sanitizer.php in the wikitext parser in MediaWiki before 1.16.3 does not properly validate Cascading Style Sheets CSS token sequences, which allows remote attackers to conduct cross-site scripting XSS attacks or obtain sensitive information by using the \2f\2a an...

5.8CVSS5.8AI score0.01917EPSS
Exploits1References17Affected Software1
UbuntuCve
UbuntuCve
added 2011/04/27 12:55 a.m.25 views

CVE-2011-1579

The checkCss function in includes/Sanitizer.php in the wikitext parser in MediaWiki before 1.16.3 does not properly validate Cascading Style Sheets CSS token sequences, which allows remote attackers to conduct cross-site scripting XSS attacks or obtain sensitive information by using the \2f\2a an...

5.8CVSS5.9AI score0.01917EPSS
Exploits1References1
Cvelist
Cvelist
added 2011/01/14 4:0 p.m.24 views

CVE-2011-0474

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle Cascading Style Sheets CSS token sequences in conjunction with cursors, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a...

7.2AI score0.02829EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2011/01/14 4:0 p.m.31 views

CVE-2011-0474

Removed by vendor...

10CVSS6.7AI score0.02829EPSS
Exploits1
Prion
Prion
added 2010/12/22 1:0 a.m.23 views

Type confusion

The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets CSS token sequences, which allows remote attackers ...

5CVSS6.4AI score0.02209EPSS
Exploits5References15Affected Software5
Cvelist
Cvelist
added 2010/11/05 4:28 p.m.60 views

CVE-2010-3962

Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code via vectors related to Cascading Style Sheets CSS token sequences and the clip attribute, aka an "invalid flag reference" issue or "Uninitialized Memory Corruption...

7.3AI score0.96889EPSS
Exploits14References14
Rows per page
Query Builder