Maxthon

maxthon

Vendor: Maxthon • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2006-6985 1Maxthon 1Maxthon Apr 23, 2026 Feb 9, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Cross-domain vulnerability in Maxthon 1.5.6 build 42 allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacker's originatin...Show more Cross-domain vulnerability in Maxthon 1.5.6 build 42 allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacker's originating site that specifies a Location HTTP header that references the target site, which then makes that content available through the outerHTML attribute of the object, a similar vulnerability to CVE-2006-3280.Show less
CVE-2005-1090 1Maxthon 1Maxthon Apr 16, 2026 May 2, 2005 N/A· v4 N/A· v3 6.4 MEDIUM· v2 Directory traversal vulnerability in the readFile and writeFile API for Maxthon 1.2.0 and 1.2.1 allows remote attackers to read or write arbitrary files.
CVE-2005-0905 1Maxthon 1Maxthon Apr 16, 2026 May 2, 2005 N/A· v4 N/A· v3 2.6 LOW· v2 Maxthon 1.2.0 allows remote malicious web sites to obtain potentially sensitive data from the search bar via the m2_search_text property.