FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-07-20 04:36:57 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
830381c7-e539-11ef-a845-b42e991fc52e	Thundirbird -- unprivileged JavaScript code execution security@mozilla.org reports: The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in the Other field of the Instant Messaging section. If another user imported the address book, clicking on the link could result in opening a web page inside Thunderbird, and that page could execute (unprivileged) JavaScript. Discovery 2025-02-04 Entry 2025-02-07 mozilla < 128.7,1 CVE-2025-1015 https://nvd.nist.gov/vuln/detail/CVE-2025-1015

VuXML ID

Description

830381c7-e539-11ef-a845-b42e991fc52e

Thundirbird -- unprivileged JavaScript code execution

security@mozilla.org reports:

The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in the Other field of the Instant Messaging section. If another user imported the address book, clicking on the link could result in opening a web page inside Thunderbird, and that page could execute (unprivileged) JavaScript.

Discovery 2025-02-04
Entry 2025-02-07
mozilla

< 128.7,1

CVE-2025-1015
https://nvd.nist.gov/vuln/detail/CVE-2025-1015