Количество 17
Количество 17
GHSA-28hh-9xvh-vcr3
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.

CVE-2019-11698
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.

CVE-2019-11698
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.

CVE-2019-11698
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
CVE-2019-11698
If a crafted hyperlink is dragged and dropped to the bookmark bar or s ...

BDU:2019-03561
Уязвимость браузеров Firefox, Firefox ESR, почтового клиента Thunderbird, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю получить доступ к конфиденциальным данным
ELSA-2019-1310
ELSA-2019-1310: thunderbird security update (IMPORTANT)
ELSA-2019-1309
ELSA-2019-1309: thunderbird security update (IMPORTANT)
ELSA-2019-1308
ELSA-2019-1308: thunderbird security update (IMPORTANT)

SUSE-SU-2019:1405-1
Security update for MozillaFirefox

SUSE-SU-2019:1388-1
Security update for MozillaFirefox
ELSA-2019-1269
ELSA-2019-1269: firefox security update (CRITICAL)
ELSA-2019-1267
ELSA-2019-1267: firefox security update (CRITICAL)
ELSA-2019-1265
ELSA-2019-1265: firefox security update (CRITICAL)

openSUSE-SU-2019:1484-1
Security update for MozillaThunderbird

SUSE-SU-2019:1458-1
Security update for MozillaThunderbird

openSUSE-SU-2019:1534-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
---|---|---|---|---|
GHSA-28hh-9xvh-vcr3 If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7. | CVSS3: 5.3 | 0% Низкий | около 3 лет назад | |
![]() | CVE-2019-11698 If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
![]() | CVE-2019-11698 If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7. | CVSS3: 6.1 | 0% Низкий | около 6 лет назад |
![]() | CVE-2019-11698 If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for the theft of browser history by a malicious site. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
CVE-2019-11698 If a crafted hyperlink is dragged and dropped to the bookmark bar or s ... | CVSS3: 5.3 | 0% Низкий | около 6 лет назад | |
![]() | BDU:2019-03561 Уязвимость браузеров Firefox, Firefox ESR, почтового клиента Thunderbird, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю получить доступ к конфиденциальным данным | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
ELSA-2019-1310 ELSA-2019-1310: thunderbird security update (IMPORTANT) | около 6 лет назад | |||
ELSA-2019-1309 ELSA-2019-1309: thunderbird security update (IMPORTANT) | около 6 лет назад | |||
ELSA-2019-1308 ELSA-2019-1308: thunderbird security update (IMPORTANT) | около 6 лет назад | |||
![]() | SUSE-SU-2019:1405-1 Security update for MozillaFirefox | около 6 лет назад | ||
![]() | SUSE-SU-2019:1388-1 Security update for MozillaFirefox | около 6 лет назад | ||
ELSA-2019-1269 ELSA-2019-1269: firefox security update (CRITICAL) | около 6 лет назад | |||
ELSA-2019-1267 ELSA-2019-1267: firefox security update (CRITICAL) | около 6 лет назад | |||
ELSA-2019-1265 ELSA-2019-1265: firefox security update (CRITICAL) | около 6 лет назад | |||
![]() | openSUSE-SU-2019:1484-1 Security update for MozillaThunderbird | около 6 лет назад | ||
![]() | SUSE-SU-2019:1458-1 Security update for MozillaThunderbird | около 6 лет назад | ||
![]() | openSUSE-SU-2019:1534-1 Security update for MozillaFirefox | около 6 лет назад |
Уязвимостей на страницу