exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2018-5176

около 7 лет назад

The JSON Viewer displays clickable hyperlinks for strings that are parseable as URLs, including "javascript:" links. If a JSON file contains malicious JavaScript script embedded as "javascript:" links, users may be tricked into clicking and running this code in the context of the JSON Viewer. This can allow for the theft of cookies and authorization tokens which are accessible to that context. This vulnerability affects Firefox < 60.

CVSS3: 6.1

EPSS: Низкий

CVE-2018-5176

около 7 лет назад

CVSS3: 6.1

EPSS: Низкий

CVE-2018-5176

около 7 лет назад

CVSS3: 6.1

EPSS: Низкий

CVE-2018-5176

около 7 лет назад

The JSON Viewer displays clickable hyperlinks for strings that are par ...

CVSS3: 6.1

EPSS: Низкий

GHSA-x4p5-q86p-74vp

около 3 лет назад

CVSS3: 6.1

EPSS: Низкий

BDU:2019-03516

больше 6 лет назад

Уязвимость средства просмотра JSON файлов JSON Viewer браузера Firefox, позволяющая нарушителю осуществлять межсайтовые сценарные атаки

CVSS3: 6.1

EPSS: Низкий

SUSE-SU-2019:2872-1

почти 6 лет назад

Security update for MozillaFirefox

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-5176 The JSON Viewer displays clickable hyperlinks for strings that are parseable as URLs, including "javascript:" links. If a JSON file contains malicious JavaScript script embedded as "javascript:" links, users may be tricked into clicking and running this code in the context of the JSON Viewer. This can allow for the theft of cookies and authorization tokens which are accessible to that context. This vulnerability affects Firefox < 60.	CVSS3: 6.1	0% Низкий	около 7 лет назад
CVE-2018-5176 The JSON Viewer displays clickable hyperlinks for strings that are parseable as URLs, including "javascript:" links. If a JSON file contains malicious JavaScript script embedded as "javascript:" links, users may be tricked into clicking and running this code in the context of the JSON Viewer. This can allow for the theft of cookies and authorization tokens which are accessible to that context. This vulnerability affects Firefox < 60.	CVSS3: 6.1	0% Низкий	около 7 лет назад
CVE-2018-5176 The JSON Viewer displays clickable hyperlinks for strings that are parseable as URLs, including "javascript:" links. If a JSON file contains malicious JavaScript script embedded as "javascript:" links, users may be tricked into clicking and running this code in the context of the JSON Viewer. This can allow for the theft of cookies and authorization tokens which are accessible to that context. This vulnerability affects Firefox < 60.	CVSS3: 6.1	0% Низкий	около 7 лет назад
CVE-2018-5176 The JSON Viewer displays clickable hyperlinks for strings that are par ...	CVSS3: 6.1	0% Низкий	около 7 лет назад
GHSA-x4p5-q86p-74vp The JSON Viewer displays clickable hyperlinks for strings that are parseable as URLs, including "javascript:" links. If a JSON file contains malicious JavaScript script embedded as "javascript:" links, users may be tricked into clicking and running this code in the context of the JSON Viewer. This can allow for the theft of cookies and authorization tokens which are accessible to that context. This vulnerability affects Firefox < 60.	CVSS3: 6.1	0% Низкий	около 3 лет назад
BDU:2019-03516 Уязвимость средства просмотра JSON файлов JSON Viewer браузера Firefox, позволяющая нарушителю осуществлять межсайтовые сценарные атаки	CVSS3: 6.1	0% Низкий	больше 6 лет назад
SUSE-SU-2019:2872-1 Security update for MozillaFirefox			почти 6 лет назад

Уязвимостей на страницу