Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frame vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-12258
A vulnerability in the web-based UI of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to execute a cross-frame scripting (XFS) attack. The vulnerability exists because the affected software does not provide sufficient protections for HT...
Cisco Unified Communications Manager -
7.5
CVSSv2
CVE-2002-0783
Opera 6.01, 6.0, and 5.12 allows remote malicious users to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL.
Opera Software Opera Web Browser 5.12
Opera Software Opera Web Browser 6.0
Opera Software Opera Web Browser 6.0.1
1 EDB exploit
5
CVSSv2
CVE-2006-6310
Microsoft Internet Explorer 6.0 SP1 and previous versions allows remote malicious users to cause a denial of service (crash) via an invalid src attribute value ("?") in an HTML frame tag that is in a frameset tag with a large rows attribute. NOTE: The provenance of this...
Microsoft Internet Explorer
Microsoft Internet Explorer 6.0
1 EDB exploit
10
CVSSv2
CVE-1999-0347
Internet Explorer 4.01 allows remote malicious users to read local files and spoof web pages via a "%01" character in an "about:" Javascript URL, which causes Internet Explorer to use the domain specified after the character.
1 EDB exploit
9.3
CVSSv2
CVE-2010-0164
Use-after-free vulnerability in the imgContainer::InternalAddFrameHelper function in src/imgContainer.cpp in libpr0n in Mozilla Firefox 3.6 prior to 3.6.2 allows remote malicious users to cause a denial of service (heap memory corruption and application crash) or possibly execute...
Mozilla Firefox 3.6
1.9
CVSSv2
CVE-2020-25203
The Framer Preview application 12 for Android exposes com.framer.viewer.FramerViewActivity to other applications. By calling the intent with the action set to android.intent.action.VIEW, any other application is able to load any website/web content into the application's con...
Framer Framer Preview 12.0
4.3
CVSSv2
CVE-2013-5482
Cisco Prime LAN Management Solution (LMS) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)"...
Cisco Prime Lan Management Solution -
6.1
CVSSv2
CVE-2020-3465
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending...
Cisco Ios Xe 16.6.9
Cisco Ios Xe 17.4.1
6.1
CVSSv2
CVE-2013-1226
The Ethernet frame-forwarding implementation in Cisco NX-OS on Nexus 7000 devices allows remote malicious users to cause a denial of service (forwarding loop and service outage) via a crafted frame, aka Bug ID CSCug47098.
Cisco Nx-os -
Cisco Nexus 7000 -
Cisco Nexus 7000 10-slot -
Cisco Nexus 7000 18-slot -
Cisco Nexus 7000 9-slot -
9.3
CVSSv2
CVE-2009-1568
Stack-based buffer overflow in ienipp.ocx in Novell iPrint Client 5.30, and possibly other versions prior to 5.32, allows remote malicious users to execute arbitrary code via a long target-frame parameter.
Novell Iprint Client 5.30
Novell Iprint Client 5.31
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »