Количество 17
Количество 17
BDU:2019-01426
Уязвимость веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с недостатками механизмов ограничения домена (Same Origin Policy), позволяющая нарушителю перенаправить пользователя на вредоносный сайт
CVE-2018-18494
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64.
CVE-2018-18494
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64.
CVE-2018-18494
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64.
CVE-2018-18494
A same-origin policy violation allowing the theft of cross-origin URL ...
GHSA-57wq-mwp5-4x2j
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64.
openSUSE-SU-2018:4112-1
Security update for Mozilla Firefox
ELSA-2019-0160
ELSA-2019-0160: thunderbird security update (IMPORTANT)
ELSA-2019-0159
ELSA-2019-0159: thunderbird security update (IMPORTANT)
ELSA-2018-3833
ELSA-2018-3833: firefox security update (CRITICAL)
ELSA-2018-3831
ELSA-2018-3831: firefox security update (CRITICAL)
SUSE-SU-2018:4236-2
Security update for MozillaFirefox, mozilla-nspr and mozilla-nss
SUSE-SU-2018:4236-1
Security update for MozillaFirefox, mozilla-nspr and mozilla-nss
SUSE-SU-2018:4235-1
Security update for MozillaFirefox, mozilla-nspr and mozilla-nss
openSUSE-SU-2019:0182-1
Security update for MozillaThunderbird
SUSE-SU-2019:0338-1
Security update for MozillaThunderbird
openSUSE-SU-2019:0251-1
Security update for MozillaThunderbird
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2019-01426 Уязвимость веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с недостатками механизмов ограничения домена (Same Origin Policy), позволяющая нарушителю перенаправить пользователя на вредоносный сайт | CVSS3: 6.5 | 1% Низкий | почти 7 лет назад |
 | CVE-2018-18494 A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64. | CVSS3: 6.5 | 1% Низкий | больше 6 лет назад |
 | CVE-2018-18494 A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64. | CVSS3: 6.5 | 1% Низкий | почти 7 лет назад |
 | CVE-2018-18494 A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64. | CVSS3: 6.5 | 1% Низкий | больше 6 лет назад |
| CVE-2018-18494 A same-origin policy violation allowing the theft of cross-origin URL ... | CVSS3: 6.5 | 1% Низкий | больше 6 лет назад |
| GHSA-57wq-mwp5-4x2j A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This is a same-origin policy violation and could allow for data theft. This vulnerability affects Thunderbird < 60.4, Firefox ESR < 60.4, and Firefox < 64. | CVSS3: 6.5 | 1% Низкий | больше 3 лет назад |
 | openSUSE-SU-2018:4112-1 Security update for Mozilla Firefox | почти 7 лет назад | ||
| ELSA-2019-0160 ELSA-2019-0160: thunderbird security update (IMPORTANT) | почти 7 лет назад | ||
| ELSA-2019-0159 ELSA-2019-0159: thunderbird security update (IMPORTANT) | почти 7 лет назад | ||
| ELSA-2018-3833 ELSA-2018-3833: firefox security update (CRITICAL) | почти 7 лет назад | ||
| ELSA-2018-3831 ELSA-2018-3831: firefox security update (CRITICAL) | почти 7 лет назад | ||
| SUSE-SU-2018:4236-2 Security update for MozillaFirefox, mozilla-nspr and mozilla-nss | больше 6 лет назад | ||
| SUSE-SU-2018:4236-1 Security update for MozillaFirefox, mozilla-nspr and mozilla-nss | почти 7 лет назад | ||
| SUSE-SU-2018:4235-1 Security update for MozillaFirefox, mozilla-nspr and mozilla-nss | почти 7 лет назад | ||
| openSUSE-SU-2019:0182-1 Security update for MozillaThunderbird | почти 7 лет назад | ||
| SUSE-SU-2019:0338-1 Security update for MozillaThunderbird | почти 7 лет назад | ||
| openSUSE-SU-2019:0251-1 Security update for MozillaThunderbird | больше 6 лет назад |
Уязвимостей на страницу