CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ps Project Management Team: >> Unity-Firefox-Extension Security Vulnerabilities

CVE-2012-0958

content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted webpage.

CVSS Score

4.3

EPSS Score

0.003

Published

2012-12-26

CVE-2012-0960

Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possibly execute arbitrary code via a crafted request.

CVSS Score

7.5

EPSS Score

0.023

Published

2012-11-24

Page 1

Vulnerabilities

Vulnerable Software

Ps Project Management Team: >> Unity-Firefox-Extension Security Vulnerabilities

Products

Pricing

Contact Us