6 matches found
EUVD-2007-2055
Malware in sbrugna...
Wizz RSS Reader Mozilla plugin crossite scripting
Crossite scripting with RSS feeds...
CVE-2007-2060
Cross-zone scripting vulnerability in the Wizz RSS Reader before 2.1.9 extension to Mozilla Firefox allows remote attackers to execute arbitrary Javascript in the browser chrome via the RSS feed DOM...
CVE-2007-2060
CVE-2007-2060 affects the Wizz RSS Reader Firefox extension (pre-2.1.9). A cross-zone scripting flaw allows remote attackers to run arbitrary JavaScript in the browser chrome via the RSS feed DOM, enabling potential remote code execution in the user’s browser UI. The vulnerability is described ac...
CVE-2007-2060
Cross-zone scripting vulnerability in the Wizz RSS Reader before 2.1.9 extension to Mozilla Firefox allows remote attackers to execute arbitrary Javascript in the browser chrome via the RSS feed DOM...
The Wizz RSS Reader chrome access vulnerability
Overview The Wizz RSS Reader contains a vulnerability that may allow an attacker to take any action that Mozlla Firefox can. Description The Mozilla Firefox user interface components outside of the content area are created using chrome. This includes toolbars, menu bars, progress bars, and window...