|Max CVSS||6.8||Min CVSS||2.6||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
|16-10-2018 - 16:37||07-03-2007 - 00:19|
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags withi
|16-10-2018 - 16:33||29-01-2007 - 16:28|
KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property.
|15-10-2018 - 21:33||08-08-2007 - 21:17|
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
|15-10-2018 - 21:31||17-07-2007 - 01:30|
The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
|11-10-2017 - 01:31||21-03-2007 - 19:19|
The UTF-8 decoder in codecs/qutfcodec.cpp in Qt 3.3.8 and 4.2.3 does not reject long UTF-8 sequences as required by the standard, which allows remote attackers to conduct cross-site scripting (XSS) and directory traversal attacks via long sequences t
|11-10-2017 - 01:31||03-04-2007 - 16:19|