11 matches found
EUVD-2024-44832
Malicious code in bioql PyPI...
CVE-2024-50346
WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds and attract the victim user to visit it using WebFeed. The attacker can then inject...
CVE-2024-50346
WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds and attract the victim user to visit it using WebFeed. The attacker can then inject...
CVE-2024-50346 WebFeed HTML injection vulnerabilities
WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds and attract the victim user to visit it using WebFeed. The attacker can then inject...
CVE-2024-50346 WebFeed HTML injection vulnerabilities
WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds and attract the victim user to visit it using WebFeed. The attacker can then inject...
CVE-2024-50346
WebFeed is a lightweight RSS/Atom reader extension for Firefox/Chrome. The identified issue comprises multiple HTML injection vulnerabilities in WebFeed (prior to version 0.9.2) that can lead to CSRF and UI spoofing. A remote attacker can supply malicious RSS feeds and lure a user to visit them v...
CVE-2024-50346 WebFeed HTML injection vulnerabilities
WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds and attract the victim user to visit it using WebFeed. The attacker can then inject...
WebFeed 跨站脚本漏洞
WebFeed is a lightweight RSS/Atom reader from the individual developers at taoso. A cross-site scripting vulnerability exists in WebFeed version 0.9.2, which stems from the inclusion of multiple HTML injection vulnerabilities in WebFeed that could lead to cross-site request forgery and UI spoofin...
PT-2024-34156 · Webfeed · Webfeed
Name of the Vulnerable Software and Affected Versions: WebFeed versions prior to 0.9.2 Description: The issue concerns multiple HTML injection vulnerabilities that can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds, attracting the victim user to visit them...
Unfixed XSS vulnerability at www.bdaa.co.uk
Security researcher St@rExT, has submitted on 05/03/2007 a cross-site-scripting XSS vulnerability affecting www.bdaa.co.uk, which at the time of submission ranked 2270979 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/03/2007. It is current...
Unfixed XSS vulnerability at www.hackbulten.com
Security researcher St@rExT, has submitted on 17/03/2007 a cross-site-scripting XSS vulnerability affecting www.hackbulten.com, which at the time of submission ranked 1600392 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 17/03/2007. It is...