Tats W3M vulnerabilities
44 known vulnerabilities affecting tats/w3m.
Total CVEs
44
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH10MEDIUM33
Vulnerabilities
Page 3 of 3
CVE-2002-1348P4MEDIUMCVSS 5.0≥ 0, < 0.3.2.2-12003-02-19
CVE-2002-1348 [MEDIUM] CVE-2002-1348: w3m before 0
w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.
osv
CVE-2023-38252P4MEDIUMCVSS 5.5v0.5.3\+git202301212023-07-14
CVE-2023-38252 [MEDIUM] CWE-125 CVE-2023-38252: An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. This issue may al
An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.
nvd
CVE-2023-38253P4MEDIUMCVSS 5.5v0.5.3\+git202301212023-07-14
CVE-2023-38253 [MEDIUM] CWE-125 CVE-2023-38253: An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue m
An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file.
nvd
CVE-2002-1335P4MEDIUMCVSS 4.3≥ 0, < 0.3.2.2-12002-12-11
CVE-2002-1335 [MEDIUM] CVE-2002-1335: Cross-site scripting (XSS) vulnerability in w3m 0
Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.
osv
← Previous3 / 3