exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

GHSA-f8v9-9j4r-5fw9

больше 3 лет назад

The web console and JavaScript debugger do not sanitize all output that can be hyperlinked. Both will display "chrome:" links as active, clickable hyperlinks in their output. Web sites should not be able to directly link to internal chrome pages. Additionally, the JavaScript debugger will display "javascript:" links, which users could be tricked into clicking by malicious sites. This vulnerability affects Firefox < 60.

CVSS3: 4.3

EPSS: Низкий

CVE-2018-5167

больше 7 лет назад

CVSS3: 4.3

EPSS: Низкий

CVE-2018-5167

больше 7 лет назад

CVSS3: 4.3

EPSS: Низкий

CVE-2018-5167

больше 7 лет назад

CVSS3: 4.3

EPSS: Низкий

CVE-2018-5167

больше 7 лет назад

The web console and JavaScript debugger do not sanitize all output tha ...

CVSS3: 4.3

EPSS: Низкий

BDU:2019-03318

больше 7 лет назад

Уязвимость веб-консоли и JavaScript-отладчика браузера Firefox ESR, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

CVSS3: 5.3

EPSS: Низкий

SUSE-SU-2019:2872-1

больше 6 лет назад

Security update for MozillaFirefox

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-f8v9-9j4r-5fw9 The web console and JavaScript debugger do not sanitize all output that can be hyperlinked. Both will display "chrome:" links as active, clickable hyperlinks in their output. Web sites should not be able to directly link to internal chrome pages. Additionally, the JavaScript debugger will display "javascript:" links, which users could be tricked into clicking by malicious sites. This vulnerability affects Firefox < 60.	CVSS3: 4.3	1% Низкий	больше 3 лет назад
CVE-2018-5167 The web console and JavaScript debugger do not sanitize all output that can be hyperlinked. Both will display "chrome:" links as active, clickable hyperlinks in their output. Web sites should not be able to directly link to internal chrome pages. Additionally, the JavaScript debugger will display "javascript:" links, which users could be tricked into clicking by malicious sites. This vulnerability affects Firefox < 60.	CVSS3: 4.3	1% Низкий	больше 7 лет назад
CVE-2018-5167 The web console and JavaScript debugger do not sanitize all output that can be hyperlinked. Both will display "chrome:" links as active, clickable hyperlinks in their output. Web sites should not be able to directly link to internal chrome pages. Additionally, the JavaScript debugger will display "javascript:" links, which users could be tricked into clicking by malicious sites. This vulnerability affects Firefox < 60.	CVSS3: 4.3	1% Низкий	больше 7 лет назад
CVE-2018-5167 The web console and JavaScript debugger do not sanitize all output that can be hyperlinked. Both will display "chrome:" links as active, clickable hyperlinks in their output. Web sites should not be able to directly link to internal chrome pages. Additionally, the JavaScript debugger will display "javascript:" links, which users could be tricked into clicking by malicious sites. This vulnerability affects Firefox < 60.	CVSS3: 4.3	1% Низкий	больше 7 лет назад
CVE-2018-5167 The web console and JavaScript debugger do not sanitize all output tha ...	CVSS3: 4.3	1% Низкий	больше 7 лет назад
BDU:2019-03318 Уязвимость веб-консоли и JavaScript-отладчика браузера Firefox ESR, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации	CVSS3: 5.3	1% Низкий	больше 7 лет назад
SUSE-SU-2019:2872-1 Security update for MozillaFirefox			больше 6 лет назад

Уязвимостей на страницу