Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
AppleWebcore

3 matches found

CVE
CVEadded 2007/01/25 12:0 a.m.71 views

CVE-2007-0478

CVE-2007-0478 affects Apple Mac OS X 10.3.9/10.4.10 as used by Safari. WebCore parses HTML comments in TITLE elements incorrectly, allowing remote attackers to bypass some XSS protections and embed certain HTML tags within a comment to trigger cross-site scripting. The vulnerability is documented...

4.3CVSS4.7AI score0.01619EPSS
CVE
CVEadded 2007/08/03 10:0 a.m.56 views

CVE-2007-2410

CVE-2007-2410 affects WebCore component on Apple Mac OS X 10.3.9 and 10.4.10. The flaw causes WebCore to retain properties of certain global objects when a new URL loads in the same window, enabling remote XSS attacks. The impact is cross-site scripting, as described in the CVE entry. Apple relea...

4.3CVSS5.4AI score0.01263EPSS
CVE
CVEadded 2007/08/03 10:0 a.m.52 views

CVE-2007-2409

CVE-2007-2409 affects WebCore on Mac OS X 10.3.9 and 10.4.10; the issue is a cross-domain information disclosure via a popup window that can read the parent window URL. It is caused by WebCore’s handling of popup windows, enabling remote attackers to obtain sensitive information. Apple’s public a...

4.3CVSS5.5AI score0.0131EPSS