Lucene search
Veracode Vulnerability DatabaseVERACODE:6863HistoryJun 27, 2018 - 9:08 a.m.
Cross-Site Scripting (XSS)
2018-06-2709:08:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.001 Low
EPSS
Percentile
39.5%
qutebrowser is vulnerable to cross-site scripting attacks. The attacks exists in the history command, qute://history page through which an attacker can inject malicious Javascript to steal a user’s browsing history when the user visits a page with an html input element as it’s title.
| CPE | Name | Operator | Version |
|---|---|---|---|
| qutebrowser | le | 1.2.1 | |
| qutebrowser | le | 1.3.2 |
Related
ubuntucve
ubuntucve
CVE-2018-1000559
2018-06-26 00:00:00
cve
cve
CVE-2018-1000559
2018-06-26 16:29:02
debiancve
debiancve
CVE-2018-1000559
2018-06-26 16:29:02
suse
suse
Security update for qutebrowser (moderate)
2018-07-28 16:04:07
Security update for qutebrowser (moderate)
2018-07-28 15:59:49
osv
osv
Qutebrowser XSS Vulnerability
2018-09-13 15:47:57
PYSEC-2018-26
2018-06-26 16:29:00
CVE-2018-1000559
2018-06-26 16:29:02
prion
prion
Cross site scripting
2018-06-26 16:29:00
github
github
Qutebrowser XSS Vulnerability
2018-09-13 15:47:57
nessus
nessus
openSUSE Security Update : qutebrowser (openSUSE-2018-774)
2018-07-30 00:00:00
openSUSE Security Update : qutebrowser (openSUSE-2019-545)
2019-03-27 00:00:00
openSUSE Security Update : qutebrowser (openSUSE-2018-775)
2018-07-30 00:00:00
openvas
openvas
openSUSE: Security Advisory for qutebrowser (openSUSE-SU-2018:2130-1)
2018-07-29 00:00:00
openSUSE: Security Advisory for qutebrowser (openSUSE-SU-2018:2120-1)
2018-10-26 00:00:00
archlinux
archlinux
[ASA-201806-13] qutebrowser: cross-site scripting
2018-06-26 00:00:00
cvelist
cvelist
CVE-2018-1000559
2018-06-26 16:00:00
nvd
nvd
CVE-2018-1000559
2018-06-26 16:29:02