36 matches found
EUVD-2019-0661
Malware in sbrugna...
EUVD-2015-5851
Malware in sbrugna...
Use of Web Link to Untrusted Target with window.opener Access
Overview jupyterlab is a JupyterLab computational environment. Affected versions of this package are vulnerable to Use of Web Link to Untrusted Target with window.opener Access via the link rendering process in LaTeX typesetters for Markdown files and cells. An attacker can potentially manipulate...
Reverse Tabnabbing
hfs is vulnerable to reverse tabnabbing. The vulnerability is due to missing rel="noopener noreferrer" when opening web links with target="blank", which allows an attacker to manipulate the original HFS tab via the window.opener property...
Linux Distros Unpatched Vulnerability : CVE-2017-1000035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack CVE-2017-1000035 Note that Nessus relies on the presence of the package as reported by t...
HFS user adding a "web link" in HFS is vulnerable to "target=_blank" exploit
Summary When adding a "web link" to the HFS virtual filesystem, the frontend opens it with target="blank" but without the rel="noopener noreferrer" attribute. This allows the opened page to use the window.opener property to change the location of the original HFS tab. Details While most modern...
GHSA-XCXH-6CV4-Q8P8 HFS user adding a "web link" in HFS is vulnerable to "target=_blank" exploit
Summary When adding a "web link" to the HFS virtual filesystem, the frontend opens it with target="blank" but without the rel="noopener noreferrer" attribute. This allows the opened page to use the window.opener property to change the location of the original HFS tab. Details While most modern...
Use of Web Link to Untrusted Target with window.opener Access
Overview hfs is a HTTP File Server Affected versions of this package are vulnerable to Use of Web Link to Untrusted Target with window.opener Access via the openFileMenu function in the fileMenu.ts file. An attacker can manipulate the content of the original browser tab by exploiting the...
PT-2025-34325 · Npm · Hfs
Summary When adding a "web link" to the HFS virtual filesystem, the frontend opens it with target=" blank" but without the rel="noopener noreferrer" attribute. This allows the opened page to use the window.opener property to change the location of the original HFS tab. Details While most modern...
CVE-2025-25300 smartbanner.js rel noopener XSS vulnerability
smartbanner.js is a customizable smart app banner for iOS and Android. Prior to version 1.14.1, clicking on smartbanner View link and navigating to 3rd party page leaves window.opener exposed. It may allow hostile third parties to abuse window.opener, e.g. by redirection or injection on the...
CVE-2025-25300
CVE-2025-25300 concerns smartbanner.js (pre-1.14.1) where clicking the View link could expose window.opener to a 3rd party page, enabling possible redirection or script manipulation on the original page. The issue is addressed in version 1.14.1 by automatically applying rel="noopener" to links. I...
GHSA-QM5V-PJ64-852J Passbolt Api Tabnabbing when opening URI with menu "Open URI in a new tab"
Description A user could create and share a resource with a malicious URI. When the victim opens with menu “Open URI in a new tab” function, the malicious page has access to the window.opener object. Impact of issue The newly opened malicious page can for example change the window.opener.location...
PT-2024-40435 · Packagist · Passbolt/Passbolt Api
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned, so the information is not available. Description: A user could create and share a resource with a malicious URI. When the victim opens the URI in a new tab using the "Open URI in a new tab"...
PT-2023-10829 · Mediawiki · Glb Meetup Tag Extension
Name of the Vulnerable Software and Affected Versions: glb Meetup Tag Extension version 0.1 Description: A vulnerability was found in the glb Meetup Tag Extension on MediaWiki, affecting the Link Attribute Handler component. The issue leads to the use of a web link to an untrusted target with...
Meetup Tag 安全漏洞
Meetup Tag is a MediaWiki plugin. A security vulnerability exists in version 0.1 of the Meetup tag extension for mediawiki, which stems from some unknown handling in the component ink Attribute Handler, which can be used to access web links to untrusted targets via window.opener...
PT-2023-15914 · Unknown · Ualbertalib Neosdiscovery
Name of the Vulnerable Software and Affected Versions: ualbertalib NEOSDiscovery version 1.0.70 Description: This issue affects some unknown processing of the file app/views/bookmarks/ refworks.html.erb. The manipulation leads to use of web link to untrusted target with window.opener access. The...
PT-2022-8068 · Unknown · Twitter-Post-Fetcher
Name of the Vulnerable Software and Affected Versions: Twitter-Post-Fetcher versions up to 17.x Description: A vulnerability has been found in Twitter-Post-Fetcher, affecting an unknown part of the file js/twitterFetcher.js of the component Link Target Handler. The manipulation leads to the use o...
Incorrect Privilege Assignment
Overview texthelpers is an easily fetch text and static content from your locales Affected versions of this package are vulnerable to Incorrect Privilege Assignment via the link function of lib/texthelpers/translation.rb. The manipulation of the link argument leads to using web links to untrusted...
PT-2022-9019 · Ahorner · Text-Helpers
Name of the Vulnerable Software and Affected Versions: ahorner text-helpers versions up to 1.0.x ahorner text-helpers versions 1.1.0 through 1.1.1 Description: A critical issue affects the unknown code of the file lib/text helpers/translation.rb. The manipulation of the link argument leads to the...
CVE-2022-2600
The Auto-hyperlink URLs WordPress plugin through 5.4.1 does not set rel="noopener noreferer" on generated links, which can lead to Tab Nabbing by giving the target site access to the source tab through the window.opener DOM object...