Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2025/03/04 1:31 p.m.14 views

CVE-2025-1935 Clickjacking the registerProtocolHandler info-bar

A web page could trick a user into setting that site as the default handler for a custom URL protocol. This vulnerability was fixed in Firefox 136, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8...

6.6AI score0.00316EPSS
Exploits0References5
CVE
CVE
added 2025/03/04 1:31 p.m.140 views

CVE-2025-1935

CVE-2025-1935 is described in connected advisories as a UI/protocol-handler spoof affecting Firefox and Thunderbird before versions 136 (Firefox) / 128.8 (Firefox ESR) and before 136 (Thunderbird) / 128.8 (Thunderbird). The issue allows a malicious web page to coax a user into setting that site a...

4.3CVSS6.6AI score0.00316EPSS
Exploits0References6Affected Software2
GithubExploit
GithubExploit
added 2023/02/15 6:12 p.m.654 views

Exploit for CVE-2022-44666

Microsoft Windows Contacts VCF/Contact/LDAP syslink control...

9.3CVSS8AI score0.99374EPSS
Exploits63
ThreatPost
ThreatPost
added 2012/10/19 6:18 p.m.13 views

Steam Gaming Platform Vulnerable to Remote Exploits; 50 Million at Risk

More than 50 million users of the Steam gaming and media distribution platform are at risk for remote compromise because of weaknesses in the platform’s URL protocol handler, a pair of researchers at ReVuln wrote in a paper released this week. Luigi Auriemma and Donato Ferrante discovered a numbe...

2.3AI score
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2011/08/10 12:0 a.m.43 views

JVN#80404511: Windows URL Protocol Handler may insecurely load executable files

Windows URL Protocol Handler loads a specified executable for each protocol. Windows URL Protocol Handler contains an issue with the file search path, which may insecurely load executable files. Impact An attacker may execute arbitrary code with the privilege of the running application. Solution...

9.3CVSS6.8AI score0.3434EPSS
Exploits5
securityvulns
securityvulns
added 2007/07/19 12:0 a.m.43 views

Microsoft Internet Explorer 0-day vulnerability

Unfiltered shell characters on executed URL: protocol application handler...

4.3CVSS3.3AI score0.29355EPSS
Exploits3References3
Rows per page
Query Builder