Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frame vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6698
The web interface on Cisco Wireless LAN Controller (WLC) devices does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-fram...
Cisco Wireless Lan Controller
5.5
CVSSv3
CVE-2020-25203
The Framer Preview application 12 for Android exposes com.framer.viewer.FramerViewActivity to other applications. By calling the intent with the action set to android.intent.action.VIEW, any other application is able to load any website/web content into the application's con...
Framer Framer Preview 12.0
NA
CVE-2002-0783
Opera 6.01, 6.0, and 5.12 allows remote malicious users to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL.
Opera Software Opera Web Browser 5.12
Opera Software Opera Web Browser 6.0
Opera Software Opera Web Browser 6.0.1
1 EDB exploit
NA
CVE-2006-6310
Microsoft Internet Explorer 6.0 SP1 and previous versions allows remote malicious users to cause a denial of service (crash) via an invalid src attribute value ("?") in an HTML frame tag that is in a frameset tag with a large rows attribute. NOTE: The provenance of this...
Microsoft Internet Explorer
Microsoft Internet Explorer 6.0
1 EDB exploit
NA
CVE-2010-0164
Use-after-free vulnerability in the imgContainer::InternalAddFrameHelper function in src/imgContainer.cpp in libpr0n in Mozilla Firefox 3.6 prior to 3.6.2 allows remote malicious users to cause a denial of service (heap memory corruption and application crash) or possibly execute...
Mozilla Firefox 3.6
NA
CVE-2013-5482
Cisco Prime LAN Management Solution (LMS) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)"...
Cisco Prime Lan Management Solution -
NA
CVE-1999-0347
Internet Explorer 4.01 allows remote malicious users to read local files and spoof web pages via a "%01" character in an "about:" Javascript URL, which causes Internet Explorer to use the domain specified after the character.
1 EDB exploit
6.5
CVSSv3
CVE-2020-3465
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending...
Cisco Ios Xe 16.6.9
Cisco Ios Xe 17.4.1
NA
CVE-2000-0028
Internet Explorer 5.0 and 5.01 allows remote malicious users to bypass the cross frame security policy and read files via the external.NavigateAndFind function.
Microsoft Ie 4.0
Microsoft Internet Explorer 3.0.2
Microsoft Internet Explorer 3.0
Microsoft Internet Explorer 3.1
Microsoft Internet Explorer 3.2
Microsoft Internet Explorer 4.0
Microsoft Internet Explorer 4.0.1
Microsoft Internet Explorer 4.1
Microsoft Internet Explorer 4.5
Microsoft Internet Explorer 5.1
Microsoft Internet Explorer 5.0
1 EDB exploit
NA
CVE-2009-1568
Stack-based buffer overflow in ienipp.ocx in Novell iPrint Client 5.30, and possibly other versions prior to 5.32, allows remote malicious users to execute arbitrary code via a long target-frame parameter.
Novell Iprint Client 5.30
Novell Iprint Client 5.31
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »