Количество 22
Количество 22
CVE-2019-11744
Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1.
CVE-2019-11744
Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1.
CVE-2019-11744
Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1.
CVE-2019-11744
Some HTML elements, such as <title> and <textarea>, can co ...
GHSA-gf55-vpjv-mh2j
Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1.
BDU:2020-01395
Уязвимость веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с отсутствием мер по защите структуры веб-страницы, позволяющая нарушителю осуществлять межсайтовые сценарные атаки
ELSA-2019-2807
ELSA-2019-2807: thunderbird security update (IMPORTANT)
ELSA-2019-2774
ELSA-2019-2774: thunderbird security update (IMPORTANT)
ELSA-2019-2773
ELSA-2019-2773: thunderbird security update (IMPORTANT)
SUSE-SU-2019:2436-1
Security update for MozillaFirefox
SUSE-SU-2019:14173-1
Security update for MozillaFirefox, firefox-glib2, firefox-gtk3
ELSA-2019-2729
ELSA-2019-2729: firefox security update (CRITICAL)
ELSA-2019-2694
ELSA-2019-2694: firefox security update (CRITICAL)
ELSA-2019-2663
ELSA-2019-2663: firefox security update (CRITICAL)
openSUSE-SU-2019:2249-1
Security update for MozillaThunderbird
openSUSE-SU-2019:2248-1
Security update for MozillaThunderbird
SUSE-SU-2019:2515-1
Security update for MozillaThunderbird
openSUSE-SU-2019:2260-1
Security update for MozillaFirefox
openSUSE-SU-2019:2251-1
Security update for MozillaFirefox
SUSE-SU-2019:2545-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-11744 Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1. | CVSS3: 6.1 | 1% Низкий | около 6 лет назад |
 | CVE-2019-11744 Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1. | CVSS3: 6.1 | 1% Низкий | около 6 лет назад |
 | CVE-2019-11744 Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1. | CVSS3: 6.1 | 1% Низкий | около 6 лет назад |
| CVE-2019-11744 Some HTML elements, such as <title> and <textarea>, can co ... | CVSS3: 6.1 | 1% Низкий | около 6 лет назад |
| GHSA-gf55-vpjv-mh2j Some HTML elements, such as <title> and <textarea>, can contain literal angle brackets without treating them as markup. It is possible to pass a literal closing tag to .innerHTML on these elements, and subsequent content after that will be parsed as if it were outside the tag. This can lead to XSS if a site does not filter user input as strictly for these elements as it does for other elements. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1. | CVSS3: 6.1 | 1% Низкий | больше 3 лет назад |
 | BDU:2020-01395 Уязвимость веб-браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с отсутствием мер по защите структуры веб-страницы, позволяющая нарушителю осуществлять межсайтовые сценарные атаки | CVSS3: 6.1 | 1% Низкий | около 6 лет назад |
| ELSA-2019-2807 ELSA-2019-2807: thunderbird security update (IMPORTANT) | около 6 лет назад | ||
| ELSA-2019-2774 ELSA-2019-2774: thunderbird security update (IMPORTANT) | около 6 лет назад | ||
| ELSA-2019-2773 ELSA-2019-2773: thunderbird security update (IMPORTANT) | около 6 лет назад | ||
 | SUSE-SU-2019:2436-1 Security update for MozillaFirefox | около 6 лет назад | ||
| SUSE-SU-2019:14173-1 Security update for MozillaFirefox, firefox-glib2, firefox-gtk3 | около 6 лет назад | ||
| ELSA-2019-2729 ELSA-2019-2729: firefox security update (CRITICAL) | около 6 лет назад | ||
| ELSA-2019-2694 ELSA-2019-2694: firefox security update (CRITICAL) | около 6 лет назад | ||
| ELSA-2019-2663 ELSA-2019-2663: firefox security update (CRITICAL) | около 6 лет назад | ||
| openSUSE-SU-2019:2249-1 Security update for MozillaThunderbird | около 6 лет назад | ||
| openSUSE-SU-2019:2248-1 Security update for MozillaThunderbird | около 6 лет назад | ||
| SUSE-SU-2019:2515-1 Security update for MozillaThunderbird | около 6 лет назад | ||
| openSUSE-SU-2019:2260-1 Security update for MozillaFirefox | около 6 лет назад | ||
| openSUSE-SU-2019:2251-1 Security update for MozillaFirefox | около 6 лет назад | ||
| SUSE-SU-2019:2545-1 Security update for MozillaFirefox | около 6 лет назад |
Уязвимостей на страницу