Html Exploits
2,076 exploits tracked across all sources.
Microsoft Internet Explorer 5.0.1 / Opera 7.51 - URI Obfuscation
by http-equiv
IBM EGatherer 2.0 - ActiveX Control Dangerous Method
by eEye Digital Security Team
Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption
by henkie_is_leet
Outlook 2003 - Information Disclosure via VML Entity URL Request
Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.
by http-equiv
Mozilla Firefox 0.9.1 and 0.9.2 - Certificate Spoofing via Redirect and onunload JavaScript
Mozilla Firefox 0.9.1 and 0.9.2 allows remote web sites to spoof certificates of trusted web sites via redirects and Javascript that uses the "onunload" method.
by E.Kellinis
BitDefender Scan Online - Info Disclosure
The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote attackers to (1) obtain sensitive information such as system drives and contents or (2) use the RequestFile method to download and execute arbitrary code via an object codebase that uses bitdefender.cab.
by Rafel Ivgi The-Insider
WinSCP 3.5.6 - Long URI Handling Memory Corruption
by Luca Ercoli
SCT Campus Pipeline - Stored Cross-Site Scripting via Email Attachment Event Handlers
Cross-site scripting (XSS) vulnerability in SCT Campus Pipeline allows remote attackers to inject arbitrary web script or HTML via onload, onmouseover, and other Javascript events in an e-mail attachment.
by spiffomatic 64
Microsoft Internet Explorer 6 - HTML Form Status Bar Misrepresentation
by http-equiv
Microsoft Outlook 2002 - Command Injection
Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when using them as arguments when calling OUTLOOK.EXE, which allows remote attackers to use script code in the Local Machine zone and execute arbitrary programs.
by shaun2k2
Microsoft Internet Explorer <6.0 - CSRF
Microsoft Internet Explorer 5.0 through 6.0 allows remote attackers to bypass cross-frame scripting restrictions and capture keyboard events from other domains via an HTML document with Javascript that is outside a frameset that includes the target domain, then forcing the frameset to maintain focus. NOTE: the discloser claimed that the vendor does not categorize this as a vulnerability, but it can be used in a spoofing scenario; the discloser provides alternate scenarios. Spoofing scenarios are currently included in CVE.
by iDefense
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (2)
by Cheng Peng Su
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (1)
by Cheng Peng Su
2Wire HomePortal - Path Traversal via Return Parameter
Directory traversal vulnerability in wra/public/wralogin in 2Wire Gateway, possibly as used in HomePortal and other product lines, allows remote attackers to read arbitrary files via a .. (dot dot) in the return parameter. NOTE: this issue was reported as XSS, but this might be a terminology error.
by Rafel Ivgi The-Insider
Mambo 4.5 Server - 'user.php' Script Unauthorized Access
by frog
Opera Web Browser 7.x - URI Handler Directory Traversal
by S.G.Masood
Internet Explorer 6.0 - Denial of Service via CSS Scrollbar Style Manipulation
Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service (crash) by creating a web page or HTML e-mail with a textarea in a div element whose scrollbar-base-color is modified by a CSS style, which is then moved.
by Andreas Boeckler
Microsoft Internet Explorer 6 - Absolute Position Block Denial of Service
by Nick Johnson
Internet Explorer 6 SP1 - Auth Bypass
Internet Explorer 6 SP1 and earlier allows remote attackers to bypass zone restrictions by (1) using the NavigateAndFind method to load a file: URL containing Javascript, as demonstrated by NAFfileJPU, (2) using the window.open method to load a file: URL containing Javascript, as demonstrated using WsOpenFileJPU, (3) setting the href property in the base tag for the _search window, as demonstrated using WsBASEjpu, (4) loading the search window into an Iframe, as demonstrated using WsFakeSrc, (5) caching a javascript: URL in the browser history, then accessing that URL in the same frame as the target domain, as demonstrated using WsOpenJpuInHistory, NAFjpuInHistory, BackMyParent, BackMyParent2, and RefBack, aka the "Script URLs Cross Domain" vulnerability.
by Liu Die Yu
Sitebuilder 1.4 - 'sitebuilder.cgi' Directory Traversal
by Zero X
Internet Explorer 6 SP1 - RCE
Buffer overflow in Internet Explorer 6 SP1 for certain languages that support double-byte encodings (e.g., Japanese) allows remote attackers to execute arbitrary code via the Type property of an Object tag, a variant of CVE-2003-0344.
by malware
PHP Arena paFileDB 1.1.3/2.1.1/3.0/3.1 - Arbitrary File Upload / Execution
by Martin Eiszner
Opera 7.20 - Mail Client Policy Circumvention
by Arve Bersvendsen
splatt_forum - Stored Cross-Site Scripting via Post Icon Image Subject Field
Cross-site scripting (XSS) vulnerability in Splatt Forum allows remote attackers to insert arbitrary HTML and web script via the post icon (image_subject) field.
by Lethalman
Microsoft Outlook 5.5/2000 - Web Access HTML Attachment Script Execution
by Hugo Vazquez
By Source