| Max CVSS | 6.8 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-1308 | 4.3 |
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer d
|
16-10-2018 - 16:37 | 07-03-2007 - 00:19 | |
| CVE-2007-0537 | 2.6 |
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags withi
|
16-10-2018 - 16:33 | 29-01-2007 - 16:28 | |
| CVE-2007-4224 | 4.3 |
KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property.
|
15-10-2018 - 21:33 | 08-08-2007 - 21:17 | |
| CVE-2007-3820 | 2.6 |
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
|
15-10-2018 - 21:31 | 17-07-2007 - 01:30 | |
| CVE-2007-1564 | 6.8 |
The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
|
11-10-2017 - 01:31 | 21-03-2007 - 19:19 | |
| CVE-2007-0242 | 4.3 |
The UTF-8 decoder in codecs/qutfcodec.cpp in Qt 3.3.8 and 4.2.3 does not reject long UTF-8 sequences as required by the standard, which allows remote attackers to conduct cross-site scripting (XSS) and directory traversal attacks via long sequences t
|
11-10-2017 - 01:31 | 03-04-2007 - 16:19 |