CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Yoono: Security Vulnerabilities

CVE-2012-1214

Cross-site scripting (XSS) vulnerability in the Add friends module in Yoono Desktop Application before 1.8.21 allows remote attackers to inject arbitrary web script or HTML via the create field in a "Create a group" action.

CVSS Score

4.3

EPSS Score

0.003

Published

2012-02-21

CVE-2012-1215

Cross-site scripting (XSS) vulnerability in the Add friends module in the Yoono extension before 7.7.8 for Firefox allows remote attackers to inject arbitrary web script or HTML via the create field in a "Create a group" action.

CVSS Score

4.3

EPSS Score

0.003

Published

2012-02-21

CVE-2009-4100

Yoono extension before 6.1.1 for Firefox performs certain operations with chrome privileges, which allows user-assisted remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via DOM event handlers such as onload.

CVSS Score

9.3

EPSS Score

0.027

Published

2009-11-29

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved