Filtered by vendor Ublockorigin
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-36773 | 3 Sciruby, Ublockorigin, Umatrix Project | 3 Nmatrix, Ublock Origin, Umatrix | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
uBlock Origin before 1.36.2 and nMatrix before 4.4.9 support an arbitrary depth of parameter nesting for strict blocking, which allows crafted web sites to cause a denial of service (unbounded recursion that can trigger memory consumption and a loss of all blocking functionality). | |||||
CVE-2019-11595 | 1 Ublockorigin | 1 Ublock Origin | 2024-02-04 | 6.8 MEDIUM | 9.0 CRITICAL |
In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect. |