cve/CVE-2018-12587.md at 3cfee4dd979c45247c85dc4f94fa727b0c7bbe36

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

A cross-site scripting (XSS) vulnerability was found in valeuraddons German Spelling Dictionary v1.3 (an Opera Browser add-on). Instead of providing text for a spelling check, remote attackers may inject arbitrary web script or HTML via the ajax query parameter in the URL Address Bar.

POC

Reference

https://metamorfosec.com/Files/Advisories/METS-2018-003-A_XSS_Vulnerability_in_German_Spelling_Dictionary_1.3.txt

Github

No PoCs found on GitHub currently.

821 B Raw Blame History

CVE-2018-12587

Description

POC

Reference

Github

821 B

Raw Blame History