Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OpenVAS
OpenVASadded 2015/05/21 12:0 a.m.36 views

Mozilla Firefox Multiple Vulnerabilities-01 (May 2015) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

10CVSS9.1AI score0.07609EPSS
Exploits6References5
NVD
NVDadded 2015/05/14 10:59 a.m.14 views

CVE-2015-2718

The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IFRAME element referencing a different web site that is intended to read this data...

4.3CVSS8.9AI score0.00118EPSS
Exploits0References7
Prion
Prionadded 2015/05/14 10:59 a.m.11 views

Design/Logic Flaw

The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IFRAME element referencing a different web site that is intended to read this data...

4.3CVSS6.5AI score0.00118EPSS
Exploits0References7Affected Software2
Cvelist
Cvelistadded 2015/05/14 10:0 a.m.21 views

CVE-2015-2718

The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IFRAME element referencing a different web site that is intended to read this data...

9AI score0.00118EPSS
Exploits0References7
CVE
CVEadded 2015/05/14 10:0 a.m.117 views

CVE-2015-2718

CVE-2015-2718 – Firefox WebChannel.jsm Same-Origin Policy bypass . Affected software: Mozilla Firefox versions prior to 38.0. The issue allows a remote attacker to obtain sensitive webchannel-response data by loading a crafted page in an IFRAME from a different site, bypassing the Same Origin Pol...

4.3CVSS8.7AI score0.00118EPSS
Exploits0References7Affected Software1
ArchLinux
ArchLinuxadded 2015/05/13 12:0 a.m.52 views

firefox: multiple issues

CVE-2015-2708 Memory safety bugs fixed in Firefox ESR 31.7 and Firefox 38: Jesse Ruderman, Mats Palmgren, Byron Campen, and Steve Fink reported memory safety problems and crashes that affect Firefox ESR 31.6 and Firefox 37. - CVE-2015-2709 Memory safety bugs fixed in Firefox 38: Gary Kwong,...

7.5CVSS9.4AI score0.05614EPSS
Exploits0References11
UbuntuCve
UbuntuCveadded 2015/05/13 12:0 a.m.20 views

CVE-2015-2718

The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IFRAME element referencing a different web site that is intended to read this data...

4.3CVSS7.1AI score0.00118EPSS
Exploits0References3
Mozilla
Mozillaadded 2015/05/12 12:0 a.m.2985 views

Untrusted site hosting trusted page can intercept webchannel responses — Mozilla

Mozilla developer Mark Hammond reported a flaw in how WebChannel.jsm handles message traffic. He found that when a trusted page is hosted within an on an untrusted third-party untrusted framing page, the untrusted page could intercept webchannel responses meant for the trusted page, bypassing...

4.3CVSS8.8AI score0.00118EPSS
Exploits0References3Affected Software3
Rows per page
Query Builder