Количество 24
Количество 24
CVE-2025-11712
A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4.
CVE-2025-11712
A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4.
CVE-2025-11712
A malicious page could have used the type attribute of an OBJECT tag t ...
GHSA-rf6g-cf9f-g4v7
A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4.
BDU:2025-13292
Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с некорректным кодированием или сокрытием выходных данных, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)
RLSA-2025:18983
Important: thunderbird security update
RLSA-2025:18321
Important: thunderbird security update
RLSA-2025:18320
Important: thunderbird security update
RLSA-2025:18155
Important: firefox security update
RLSA-2025:18154
Important: firefox security update
ELSA-2025-19278
ELSA-2025-19278: firefox security update (IMPORTANT)
ELSA-2025-18983
ELSA-2025-18983: thunderbird security update (IMPORTANT)
ELSA-2025-18321
ELSA-2025-18321: thunderbird security update (IMPORTANT)
ELSA-2025-18320
ELSA-2025-18320: thunderbird security update (IMPORTANT)
ELSA-2025-18285
ELSA-2025-18285: firefox security update (IMPORTANT)
ELSA-2025-18155
ELSA-2025-18155: firefox security update (IMPORTANT)
ELSA-2025-18154
ELSA-2025-18154: firefox security update (IMPORTANT)
openSUSE-SU-2025:20026-1
Security update for MozillaThunderbird
SUSE-SU-2025:4006-1
Security update for MozillaThunderbird
SUSE-SU-2025:3808-1
Security update for MozillaFirefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-11712 A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4. | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
 | CVE-2025-11712 A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4. | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
| CVE-2025-11712 A malicious page could have used the type attribute of an OBJECT tag t ... | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
| GHSA-rf6g-cf9f-g4v7 A malicious page could have used the type attribute of an OBJECT tag to override the default browser behavior when encountering a web resource served without a content-type. This could have contributed to an XSS on a site that unsafely serves files without a content-type header. This vulnerability affects Firefox < 144, Firefox ESR < 140.4, Thunderbird < 144, and Thunderbird < 140.4. | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
 | BDU:2025-13292 Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с некорректным кодированием или сокрытием выходных данных, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS) | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
 | RLSA-2025:18983 Important: thunderbird security update | 3 месяца назад | ||
| RLSA-2025:18321 Important: thunderbird security update | 3 месяца назад | ||
| RLSA-2025:18320 Important: thunderbird security update | 3 месяца назад | ||
| RLSA-2025:18155 Important: firefox security update | 3 месяца назад | ||
| RLSA-2025:18154 Important: firefox security update | 3 месяца назад | ||
| ELSA-2025-19278 ELSA-2025-19278: firefox security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2025-18983 ELSA-2025-18983: thunderbird security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-18321 ELSA-2025-18321: thunderbird security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-18320 ELSA-2025-18320: thunderbird security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-18285 ELSA-2025-18285: firefox security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-18155 ELSA-2025-18155: firefox security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-18154 ELSA-2025-18154: firefox security update (IMPORTANT) | 3 месяца назад | ||
 | openSUSE-SU-2025:20026-1 Security update for MozillaThunderbird | 2 месяца назад | ||
| SUSE-SU-2025:4006-1 Security update for MozillaThunderbird | 2 месяца назад | ||
| SUSE-SU-2025:3808-1 Security update for MozillaFirefox | 3 месяца назад |
Уязвимостей на страницу