Количество 11
Количество 11
GHSA-6g72-x2jp-6592
HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1.
CVE-2016-9901
HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1.
CVE-2016-9901
HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1.
CVE-2016-9901
HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1.
CVE-2016-9901
HTML tags received from the Pocket server will be processed without sa ...
ELSA-2016-2973
ELSA-2016-2973: thunderbird security update (IMPORTANT)
SUSE-SU-2016:3223-1
Security update for MozillaFirefox
SUSE-SU-2016:3222-1
Security update for MozillaFirefox
SUSE-SU-2016:3210-1
Security update for MozillaFirefox
ELSA-2016-2946
ELSA-2016-2946: firefox security update (CRITICAL)
openSUSE-SU-2016:3184-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-6g72-x2jp-6592 HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1. | CVSS3: 9.8 | 2% Низкий | больше 3 лет назад |
 | CVE-2016-9901 HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1. | CVSS3: 9.8 | 2% Низкий | около 7 лет назад |
 | CVE-2016-9901 HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1. | CVSS3: 9.8 | 2% Низкий | больше 8 лет назад |
 | CVE-2016-9901 HTML tags received from the Pocket server will be processed without sanitization and any JavaScript code executed will be run in the "about:pocket-saved" (unprivileged) page, giving it access to Pocket's messaging API through HTML injection. This vulnerability affects Firefox ESR < 45.6 and Firefox < 50.1. | CVSS3: 9.8 | 2% Низкий | около 7 лет назад |
| CVE-2016-9901 HTML tags received from the Pocket server will be processed without sa ... | CVSS3: 9.8 | 2% Низкий | около 7 лет назад |
| ELSA-2016-2973 ELSA-2016-2973: thunderbird security update (IMPORTANT) | больше 8 лет назад | ||
 | SUSE-SU-2016:3223-1 Security update for MozillaFirefox | больше 8 лет назад | ||
| SUSE-SU-2016:3222-1 Security update for MozillaFirefox | больше 8 лет назад | ||
| SUSE-SU-2016:3210-1 Security update for MozillaFirefox | больше 8 лет назад | ||
| ELSA-2016-2946 ELSA-2016-2946: firefox security update (CRITICAL) | больше 8 лет назад | ||
| openSUSE-SU-2016:3184-1 Security update for MozillaFirefox | больше 8 лет назад |
Уязвимостей на страницу