CVE-2004-0721
published 2004-07-27CVE-2004-0721: Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another…
PriorityP422high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.62%
73.1th percentile
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kde | konqueror | — | — |
| kde | konqueror | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5w5x-24p6-895v: Konqueror 3
ghsa_unreviewed·2022-04-29
CVE-2004-0721 [HIGH] GHSA-5w5x-24p6-895v: Konqueror 3
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Red Hat
security flaw
vendor_redhat·2004-07-01·CVSS 7.5
CVE-2004-0721 [HIGH] security flaw
security flaw
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
No detection rules found.
No public exploits indexed.
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864http://marc.info/?l=bugtraq&m=109225538901170&w=2http://secunia.com/advisories/11978http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/http://security.gentoo.org/glsa/glsa-200408-13.xmlhttp://www.kde.org/info/security/advisory-20040811-3.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/1598https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11371http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864http://marc.info/?l=bugtraq&m=109225538901170&w=2http://secunia.com/advisories/11978http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/http://security.gentoo.org/glsa/glsa-200408-13.xmlhttp://www.kde.org/info/security/advisory-20040811-3.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/1598https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11371
2004-07-27
Published