Gareth Heyes

**Nome do software vulnerável e versões afetadas** Versões do Joomla 3.4.6 a 5.1.2 **Descrição** A validação inadequada de URLs pode resultar em uma verificação incorreta sobre se um URL de redirecionamento é interno ou não. Esse problema pode permitir a exibição de links obscuros e inseguros. **Recomendações** Para as versões do Joomla 3.4.6 a 5.1.2, atualize para a versão 3.10.17-elts, 4.4.7 ou 5.1.3 para manter a segurança.

**Nome do software vulnerável e versões afetadas** Joomla! (versões afetadas não especificadas) **Descrição** O problema está relacionado à escapada inadequada de endereços de e-mail, o que leva a vulnerabilidades XSS em vários componentes. Isso poderia permitir que um invasor remoto executasse código arbitrário explorando a vulnerabilidade. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Nome do software vulnerável e versões afetadas** Versões do Google Chrome anteriores à 105.0.5195.52 Microsoft Edge (versões afetadas não especificadas) **Descrição** O problema está relacionado a uma verificação de segurança implementada incorretamente para elementos padrão na sandbox iframe dos navegadores Microsoft Edge e Google Chrome. Isso poderia permitir que um invasor remoto vazasse informações protegidas. Especificamente, no Google Chrome, uma implementação inadequada da sandbox iframe permitiu que um invasor remoto vazasse dados de origem cruzada por meio de uma página HTML maliciosa. **Recomendações** Para versões do Google Chrome anteriores à 105.0.5195.52, atualize para a versão 105.0.5195.52 ou posterior para resolver o problema. Para o Microsoft Edge, no momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Nome do software vulnerável e versões afetadas** Versões do Firefox anteriores à 102 **Descrição** O problema está relacionado a erros na sanitização de HTML. Isso poderia permitir que um invasor remoto executasse código arbitrário se a entrada do invasor fosse sanitizada por meio da API HTML Sanitizer e fizesse referência a um arquivo JavaScript da mesma origem contendo o script a ser executado. O número estimado de dispositivos potencialmente afetados em todo o mundo não foi especificado. **Recomendações** Para versões anteriores à 102, atualize para a versão 102 ou posterior para resolver o problema. Como solução temporária, considere restringir o uso da API HTML Sanitizer até que um patch esteja disponível. Evite usar a API HTML Sanitizer para sanitizar entradas do invasor que façam referência a arquivos JavaScript da mesma origem até que o problema seja resolvido.

**Name of the Vulnerable Software and Affected Versions** Midori Browser version 0.5.11 **Description** The issue arises from incorrect application of Content Security Policy (CSP) to multipart content sent with the multipart/x-mixed-replace MIME type. This could lead to script execution in areas where CSP should have blocked it, potentially allowing cross-site scripting (XSS) and other attacks when the product renders the content as HTML. The problem also involves consideration of the polyglot case, where a file can be both a valid image (e.g., GIF) and valid JavaScript. **Recommendations** For Midori Browser version 0.5.11, consider updating to a version where this issue is resolved, as the current version does not correctly apply CSP to all parts of multipart content. As a temporary workaround, consider restricting the rendering of multipart content to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 70 Thunderbird versions prior to 68.2 Firefox ESR versions prior to 68.2 **Description** The issue arises from the incorrect handling of null bytes when processing HTML entities, leading to incorrect parsing by Firefox. This could result in HTML comment text being treated as HTML, potentially leading to cross-site scripting (XSS) in certain web applications. Additionally, it could allow HTML entities to be masked from filters, enabling the use of entities to hide actual characters of interest from filters. The vulnerability may allow a remote attacker to impact data integrity. **Recommendations** For Firefox versions prior to 70, update to version 70 or later. For Thunderbird versions prior to 68.2, update to version 68.2 or later. For Firefox ESR versions prior to 68.2, update to version 68.2 or later.

**Name of the Vulnerable Software and Affected Versions** Microsoft Edge (affected versions not specified) **Description** A spoofing issue exists due to Microsoft Edge's improper handling of specific HTML content. This could allow an attacker to trick a user into believing they are on a legitimate website. The attacker's specially crafted website could either spoof content or serve as a pivot to chain an attack with other vulnerabilities in web services. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 10.2.1 Safari versions prior to 10.0.3 tvOS versions prior to 10.1.1 **Description** The issue involves the WebKit component and allows remote attackers to bypass the Same Origin Policy. This enables attackers to obtain sensitive information via a crafted web site. The problem is related to the ability of attackers to manipulate a website and exploit this vulnerability. **Recommendations** For iOS versions prior to 10.2.1, update to version 10.2.1 or later to resolve the issue. For Safari versions prior to 10.0.3, update to version 10.0.3 or later to resolve the issue. For tvOS versions prior to 10.1.1, update to version 10.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the WebKit component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer (affected versions not specified) **Description** The issue is related to memory handling errors, allowing remote attackers to execute arbitrary code or cause a denial of service by accessing a specially crafted website. This could corrupt memory, enabling an attacker to execute code in the context of the current user. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions prior to 9.0.246.0 Adobe Flash Player versions 10.x prior to 10.0.32.18 Adobe AIR versions prior to 1.5.2 Description: The issue allows attackers to obtain sensitive information via vectors involving saving an SWF file to a hard drive, related to a local sandbox vulnerability. Recommendations: For Adobe Flash Player versions prior to 9.0.246.0, update to version 9.0.246.0 or later. For Adobe Flash Player versions 10.x prior to 10.0.32.18, update to version 10.0.32.18 or later. For Adobe AIR versions prior to 1.5.2, update to version 1.5.2 or later.

**Name of the Vulnerable Software and Affected Versions** Apple Safari for Windows versions 3.0.3 and earlier **Description** The issue allows remote attackers to bypass the Same Origin Policy, enabling access from local zones to external domains. This is achieved via a certain `body.innerHTML` property value, which facilitates a classic JavaScript frame hijacking attack. **Recommendations** For Apple Safari for Windows versions 3.0.3 and earlier, update to a version later than 3.0.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Safari version 2.0.4 **Description** A cross-domain issue allows remote attackers to access restricted information from other domains via Javascript. This can be achieved through a js script that accesses the location information of cross-domain web pages, possibly involving `setTimeout` and timed events. **Recommendations** For Apple Safari version 2.0.4, consider disabling Javascript execution for cross-domain requests as a temporary workaround until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.