CWE:
 

Tytuł
Data
Autor
Med.
Magento WooCommerce CardGate Payment Gateway 2.0.30 Payment Process Bypass
25.02.2020
GeekHack
Low
Parity Browser < 1.6.10 Bypass Same Origin Policy
12.01.2018
tintinweb
Med.
Solarwinds LEM Insecure Update Process
26.09.2017
Hank Leininger


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2022-04-28
Low
CVE-2022-29818

Vendor: Jetbrains
Software: Intellij idea
 

 
In JetBrains IntelliJ IDEA before 2022.1 origin checks in the internal web server were flawed

 
2022-03-21
Medium
CVE-2020-24772

Vendor: Clash project
Software: Clash
 

 
In Dreamacro Clash for Windows v0.11.4, an attacker could embed a malicious iframe in a website with a crafted URL that would launch the Clash Windows client and force it to open a remote SMB share. Windows will perform NTLM authentication when opening the SMB share and that request can be relayed (using a tool like responder) for code execution (or captured for hash cracking).

 
2022-03-03
Medium
CVE-2022-25146

Vendor: Liferay
Software: Digital expe...
 

 
The Remote App module in Liferay Portal through v7.4.3.8 and Liferay DXP through v7.4 does not check if the origin of event messages it receives matches the origin of the Remote App, allowing attackers to exfiltrate the CSRF token via a crafted event message.

 
2022-02-12
Low
CVE-2022-0108

Vendor: Google
Software: Chrome
 

 
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

 
Low
CVE-2022-0111

Vendor: Google
Software: Chrome
 

 
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page.

 
2022-01-25
Medium
CVE-2022-23032

Vendor: F5
Software: Big-ip acces...
 

 
In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, connecting BIG-IP Edge Client on Mac and Windows is vulnerable to a DNS rebinding attack. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

 
2021-12-14
Medium
CVE-2021-44935

Vendor: Glfusion
Software: Glfusion
 

 
glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /public_html/comment.php. The attacker can complete the attack remotely without interaction.

 
2021-12-13
Medium
CVE-2021-39063

Updating...
 

 
IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information due to a misconfiguration in access control headers. IBM X-Force ID: 214956.

 
2021-12-08
Low
CVE-2021-43531

Vendor: Mozilla
Software: Firefox
 

 
When a user loaded a Web Extensions context menu, the Web Extension could access the post-redirect URL of the element clicked. If the Web Extension lacked the WebRequest permission for the hosts involved in the redirect, this would be a same-origin-violation leaking data the Web Extension should have access to. This was fixed to provide the pre-redirect URL. This is related to CVE-2021-43532 but in the context of Web Extensions. This vulnerability affects Firefox < 94.

 
Low
CVE-2021-38507

Vendor: Mozilla
Software: Firefox
 

 
The Opportunistic Encryption feature of HTTP2 (RFC 8164) allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-origin with unencrypted connections on port 80. However, if a second encrypted port on the same IP address (e.g. port 8443) did not opt-in to opportunistic encryption; a network attacker could forward a connection from the browser to port 443 to port 8443, causing the browser to treat the content of port 8443 as same-origin with HTTP. This was resolved by disabling the Opportunistic Encryption feature, which had low usage. This vulnerability affects Firefox < 94, Thunderbird < 91.3, and Firefox ESR < 91.3.

 

 


Copyright 2022, cxsecurity.com

 

Back to Top