Uzbl

uzbl

Vendor: Uzbl • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-0843 2Debian Uzbl 2Debian Linux Uzbl Nov 21, 2024 Nov 19, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 uzbl: Information disclosure via world-readable cookies storage file
CVE-2010-2809 1Uzbl 1Uzbl Apr 29, 2026 Aug 19, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly use the @SELECTED_URI feature, which allows user-assisted remote attackers to execute arbitrary commands via a crafted HREF a...Show more The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly use the @SELECTED_URI feature, which allows user-assisted remote attackers to execute arbitrary commands via a crafted HREF attribute of an A element in an HTML document.Show less
CVE-2010-0011 1Uzbl 1Uzbl Apr 29, 2026 Feb 25, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes the run method of the Uzbl object, which allows remote attackers to execute arbitrary commands via JavaScript code.