CVE-2011-0244

WebKit in Apple Safari before 5.0.6 allows user-assisted remote attackers to read arbitrary files via vectors related to improper canonicalization of URLs within RSS feeds...

CVE-2012-3695

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML by leveraging improper URL canonicalization during the handling of the location.href property...

CVE-2012-3695

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML by leveraging improper URL canonicalization during the handling of the location.href property...

CVE-2012-3695

CVE-2012-3695 corresponds to a Cross-site scripting (XSS) vulnerability in WebKit used by Apple Safari before version 6.0. The issue arises from improper URL canonicalization during handling of the location.href property, enabling remote attackers to inject arbitrary web script or HTML. The provi...

CVE-2011-0244

WebKit in Apple Safari before 5.0.6 allows user-assisted remote attackers to read arbitrary files via vectors related to improper canonicalization of URLs within RSS feeds...

Google Chrome multiple vulnerabilities - June 10

The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnjun10.nasl 5306 2017-02-16 09:00:16Z teissa $ Google Chrome multiple vulnerabilities - June 10 Authors: Madhuri D Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Google Chrome Multiple Vulnerabilities (Jun 2010)

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-2105

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors...

CVE-2010-2105

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors...

CVE-2010-2105

CVE-2010-2105 affects Google Chrome up to version 5.0.375.55. The issue stems from Chrome not properly following Safe Browsing URL canonicalization requirements, with unspecified impact and remote attack vectors. Affected product is Chrome; root cause tied to Safe Browsing canonicalization. Remed...

CVE-2010-2105

Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicalization of URLs, which has unspecified impact and remote attack vectors...

CVE-2008-2665

CVE-2008-2665: PHP 5.2.6 and earlier contains a directory traversal vulnerability in the posix_access function. An attacker can use a .. in an HTTP URL to bypass safe_mode restrictions, with the URL being canonicalized to a local filename after the safe_mode check has executed. The description ex...

CVE-2007-1762

Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / slash characters in the URL...

Design/Logic Flaw

Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / slash characters in the URL...

CVE-2007-1762

Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / slash characters in the URL...

CVE-2007-1762

Summary : CVE-2007-1762 affects Mozilla Firefox 2.0.0.1–2.0.0.3. The issue is that Firefox does not canonicalize URLs before checking them against the phishing site blacklist, enabling a remote attacker to bypass phishing protection by using multiple slashes in the URL. Impact (as stated) : Phish...

CVE-2003-1025

Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "%01" character before an @ sign in the user@domain portion of the URL, which hides the rest of the URL, including the real site, in the address bar, aka the "Improper URL Canonicalization Vulnerabilit...