CVE-2022-32308

Опубликовано: 13 июл. 2022

Источник: ubuntu

Приоритет: medium

CVSS3: 6.1

Описание

Cross Site Scripting (XSS) vulnerability in uBlock Origin extension before 1.41.1 allows remote attackers to run arbitrary code via a spoofed 'MessageSender.url' to the browser renderer process.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	not-affected	1.42.0+dfsg-1
esm-apps/xenial	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
kinetic	not-affected	1.42.0+dfsg-1

Показывать по

Ссылки на источники

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2022-32308

CVSS3: 6.1

nvd

больше 3 лет назад

Cross Site Scripting (XSS) vulnerability in uBlock Origin extension before 1.41.1 allows remote attackers to run arbitrary code via a spoofed 'MessageSender.url' to the browser renderer process.

CVE-2022-32308

CVSS3: 6.1

debian

больше 3 лет назад

Cross Site Scripting (XSS) vulnerability in uBlock Origin extension be ...

GHSA-756h-ggr3-6vcj

CVSS3: 6.1

github

больше 3 лет назад

Cross Site Scripting (XSS) vulnerability in uBlock Origin extension before 1.41.1 allows remote attackers to run arbitrary code via a spoofed 'MessageSender.url' to the browser renderer process.

6.1 Medium

CVSS3

CVE-2022-32308

Описание

Пакет ublock-origin

Ссылки на источники

Связанные уязвимости