Vulnerabilities (CVE)

Filtered by vendor Yoono Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-1215 1 Yoono 1 Yoono For Firefox 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Add friends module in the Yoono extension before 7.7.8 for Firefox allows remote attackers to inject arbitrary web script or HTML via the create field in a "Create a group" action.
CVE-2012-1214 1 Yoono 1 Yoono Desktop 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Add friends module in Yoono Desktop Application before 1.8.21 allows remote attackers to inject arbitrary web script or HTML via the create field in a "Create a group" action.
CVE-2009-4100 2 Mozilla, Yoono 2 Firefox, Yoono 2024-02-04 9.3 HIGH N/A
Yoono extension before 6.1.1 for Firefox performs certain operations with chrome privileges, which allows user-assisted remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via DOM event handlers such as onload.