Apple » Safari » 2.0.4 : Security Vulnerabilities, CVEs, Published In 2012 (XSS)

cpe:2.3:a:apple:safari:2.0.4:*:*:*:*:*:*:*

CVE-2012-3695

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML by leveraging improper URL canonicalization during the handling of the location.href property.
Max CVSS
4.3
EPSS Score
0.25%
Published
2012-07-25
Updated
2013-03-22

CVE-2012-0678

Cross-site scripting (XSS) vulnerability in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML via a feed:// URL.
Max CVSS
4.3
EPSS Score
0.11%
Published
2012-07-25
Updated
2012-08-08

CVE-2011-3046

The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
Max CVSS
10.0
EPSS Score
1.78%
Published
2012-03-09
Updated
2020-04-16
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close