Skip to main content

Toolbar

4 CVEs product

Monthly

CVE-2021-33592 CRITICAL Act Now

NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arbitrary code via a crafted upgrade.xml file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Toolbar
NVD
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-2253 HIGH This Week

Untrusted search path vulnerability in Installer of Yahoo!. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Toolbar
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2013-6853 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in clickstream.js in Y!. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Mozilla Microsoft XSS Toolbar
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-2647 MEDIUM This Month

Yahoo!. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Google Information Disclosure Apple Toolbar Chrome
NVD
CVSS 2.0
5.8
EPSS
0.2%
EPSS 2% CVSS 9.8
CRITICAL Act Now

NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arbitrary code via a crafted upgrade.xml file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Toolbar
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Untrusted search path vulnerability in Installer of Yahoo!. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Toolbar
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in clickstream.js in Y!. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Mozilla Microsoft XSS +1
NVD
EPSS 0% CVSS 5.8
MEDIUM This Month

Yahoo!. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Google Information Disclosure Apple +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy