Vulnerability Details : CVE-2007-2060
Cross-zone scripting vulnerability in the Wizz RSS Reader before 2.1.9 extension to Mozilla Firefox allows remote attackers to execute arbitrary Javascript in the browser chrome via the RSS feed DOM.
Products affected by CVE-2007-2060
- cpe:2.3:a:wizz_computers:wizz_rss_reader:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-2060
3.77%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 92 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-2060
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
References for CVE-2007-2060
-
http://wizzrss.blat.co.za/2009/11/17/so-much-for-nsiscriptableunescapehtmlparsefragment/
أفلام تم تحميلها حديثًا على موقع Xxx رائع - Pladultfuck
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/33693
-
http://www.kb.cert.org/vuls/id/MIMG-6ZKP4T
-
https://addons.mozilla.org/en-US/firefox/addon/424
-
http://www.vupen.com/english/advisories/2007/1425
-
http://www.securityfocus.com/bid/23523
-
http://www.kb.cert.org/vuls/id/319464
Patch;US Government Resource
Jump to