Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Github Security Blog
Github Security Blogadded 2021/10/22 4:20 p.m.39 views

Arbitrary command execution on Windows via qutebrowserurl: URL handler

Impact Starting with qutebrowser v1.7.0, the Windows installer for qutebrowser registers it as a handler for certain URL schemes. With some applications such as Outlook Desktop, opening a specially crafted URL can lead to argument injection, allowing execution of qutebrowser commands, which in tu...

8.8CVSS2.1AI score0.00745EPSS
Exploits0References5Affected Software1
xssed
xssedadded 2011/12/12 12:0 a.m.10 views

Unfixed XSS vulnerability at www.three.com.hk

Security researcher Anthony Lai from VXRL, has submitted on 12/12/2011 a cross-site-scripting XSS vulnerability affecting www.three.com.hk, which at the time of submission ranked 40830 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011...

Exploits0References1
xssed
xssedadded 2011/12/12 12:0 a.m.15 views

Unfixed XSS vulnerability at www.it3.mtr.com.hk

Security researcher Alan Ho from VXRL, has submitted on 12/12/2011 a cross-site-scripting XSS vulnerability affecting www.it3.mtr.com.hk, which at the time of submission ranked 32872 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. I...

Exploits0References1
Rows per page
Query Builder