CVE-2023-0878

Cross-site Scripting (XSS) – Generic in GitHub repository nuxt/framework prior to 3.2.1.

Source: CVE-2023-0878

CVE-2023-0877

Code Injection in GitHub repository froxlor/froxlor prior to 2.0.11.

Source: CVE-2023-0877

CVE-2023-0821

HashiCorp Nomad and Nomad Enterprise 1.2.15 up to 1.3.8, and 1.4.3 jobs using a maliciously compressed artifact stanza source can cause excessive disk usage. Fixed in 1.2.16, 1.3.9, and 1.4.4.

Source: CVE-2023-0821

CVE-2022-47703

TIANJIE CPE906-3 is vulnerable to password disclosure. This is present on Software Version WEB5.0_LCD_20200513, Firmware Version MV8.003, and Hardware Version CPF906-V5.0_LCD_20200513.

Source: CVE-2022-47703

CVE-2020-6817

bleach.clean behavior parsing style attributes could result in a regular expression denial of service (ReDoS). Calls to bleach.clean with an allowed tag with an allowed style attribute are vulnerable to ReDoS. For example, bleach.clean(…, attributes={‘a’: [‘style’]}).

Source: CVE-2020-6817

CVE-2019-17003

Scanning a QR code that contained a javascript: URL would have resulted in the Javascript being executed.

Source: CVE-2019-17003

CVE-2022-0637

There was an open redirection vulnerability pollbot, which was used in https://pollbot.services.mozilla.com/ and https://pollbot.stage.mozaws.net/ An attacker could have redirected anyone to malicious sites.

Source: CVE-2022-0637

CVE-2021-43529

Thunderbird versions prior to 91.3.0 are vulnerable to the heap overflow described in CVE-2021-43527 when processing S/MIME messages. Thunderbird versions 91.3.0 and later will not call the vulnerable code when processing S/MIME messages that contain certificates with DER-encoded DSA or RSA-PSS signatures.

Source: CVE-2021-43529

CVE-2022-44299

SiteServerCMS 7.1.3 sscms has a file read vulnerability.

Source: CVE-2022-44299

CVE-2020-12413

The Raccoon attack is a timing attack on DHE ciphersuites inherit in the TLS specification. To mitigate this vulnerability, Firefox disabled support for DHE ciphersuites.

Source: CVE-2020-12413