1 | Published | Status | Application | Type | Description | URL |
|---|---|---|---|---|---|---|
2 | ||||||
3 | 2018-05-02 | Patched | Edge | Spoof: addressbar and content | Spoof the addressbar. Write any arbitrary URL with any content | |
4 | 2017-09-27 | Patched | IE | Reveal content of address bar | Reveals what's currently in the address bar | |
5 | 2017-05-30 | Patched | Edge | DoS | SecurityPolicyViolationEvent(1) crash | |
6 | 2017-05-18 | Not Patched | IE | popUp blocker bypass | Byass the popUp blocker on IE | |
7 | 2017-05-17 | Patched | Edge | data-uri loaded on the top frame | Even with the restrictions, data-uris can be loaded on top | |
8 | 2017-05-17 | Patched | Chrome 60 | data-uri loaded on the top frame | Even with the restrictions, data-uris can be loaded on top | |
9 | 2017-05-10 | Patched | Edge | SOP bypass / UXSS | SOP bypass / UXSS – Stealing Credentials Pretty Fast (Edge) | |
10 | 2017-05-09 | Patched | Edge | Spoof: addressbar and content | Bypassing the patch (2nd time) to spoof Smartscreen | |
11 | 2017-05-05 | Patched | Edge | Intranet Mode AppContainer Escape | In Intranet Zone, Edge automatically opens xaml/xbap files out of the AppContainer. Interesting to jmp from Edge to IE | |
12 | 2017-05-04 | Not Patched | Trident Engine | SOP bypass / UXSS | SOP bypass / UXSS on Trident Engines | |
13 | 2017-04-28 | Patched | Edge | CSP bypass | CSP webpage can render <OBJECT PDF> files from other origins. | |
14 | 2017-04-24 | Patched | Edge | SOP bypass / UXSS | SOP bypass / UXSS – Tweeting like Charles Darwin | |
15 | 2017-04-17 | Patched | Edge | SOP bypass / UXSS | SOP bypass courtesy of the reading mode | |
16 | 2017-04-06 | Patched | Edge | Information Disclosure / Fingerprinting | Detecting Installed Extensions | |
17 | 2017-04-03 | Patched | Edge | Invalid information in addressbar | Opening any URL containing the string about:blank (in lowercase) will show an empty address bar. | |
18 | 2017-03-31 | Patched | Edge | Switch to Intranet Zone | Defeating the popUp blocker, the XSS filter and SuperNavigate with our fake ticket to the Intranet Zone | |
19 | 2017-03-24 | Patched | Edge | Spoof: referer + XSS filter bypass | Spoof the referrer with an iframe injection | |
20 | 2017-03-21 | Not Patched | BitTorrent | RCE | Remote Code Execution | |
21 | 2017-03-21 | Not Patched | uTorrent | RCE | Remote Code Execution | |
22 | 2017-03-19 | Patched | IE | SOP bypass / UXSS | SOP bypass / UXSS More Adventures in a Domainless World | |
23 | 2017-03-14 | Patched | Edge | Spoof: addressbar and content | Bypassing the patch to spoof the SmartScreen warning | |
24 | 2017-02-20 | Not Patched | IE | Spoof: content - Persistent Script | The Attack of the Alerts and the Zombie Script | |
25 | 2017-02-16 | Patched | Edge | DoS | embed/object with a blob source crashes the browser | |
26 | 2017-02-06 | Patched | IE | SOP bypass / UXSS | SOP bypass / UXSS htmlFile in IFrame | |
27 | 2016-12-13 | Patched | Edge | SOP bypass / UXSS | SOP bypass / UXSS – Adventures in a Domainless World | |
28 | 2016-12-07 | Patched | Edge | Spoof: addressbar and content | Spoof the SmartScreen warning | |
29 | 2016-11-25 | Patched | Edge | Information Disclosure and more | Abusing of Protocols to Load Local Files, bypass the HTML5 Sandbox and Open Popups | |
30 | 2016-11-15 | Patched | Edge / IE | Loads HTTP in HTTPS | Bypassing Mixed Content Warnings – Loading Insecure Content in Secure Pages | |
31 | 2016-10-24 | Patched | IE | Information Disclosure / Fingerprinting | Detecting Local Files to Evade Analysts | |
32 | 2016-10-13 | Patched | Edge | Default program execution | Open default txt/css apps without user interaction | |
33 | 2016-09-27 | Patched | Edge / IE | SOP bypass | Workers SOP Bypass importScripts and baseHref | |
34 | 2016-09-23 | Patched | Edge | Spoof: addressbar | AddressBar spoof | |
35 | 2016-09-19 | Patched | IE | Information Disclosure / Fingerprinting | Detecting analysts before installing the malware | |
36 | 2016-09-12 | Patched | Edge / IE | Spoof: referer + XSS filter bypass | Referer spoofing and defeating the XSS filter | |
37 | 2016-09-05 | Patched | Edge | Information Disclosure / Fingerprinting | CSS History Leak | |
38 | 2016-08-28 | Patched | Edge / IE | Information Disclosure | Grabbing data from Inputs and Textareas | |
39 | 2016-08-26 | Patched | Edge | Information Disclosure | Check for the existence of objects/variables from other origins | |
40 | 2016-08-09 | Patched | Edge | Spoof: addressbar | AddressBar spoof | |
41 | 2016-08-09 | Patched | Edge | Spoof: referer + XSS filter bypass | Referer spoofing and defeating the XSS filter | |
42 | 2015-05-02 | Patched | Edge | Information Disclosure | Check for the existence of objects/variables from other origins | |
43 | 2015-05-02 | Patched | Edge | Information Disclosure | Load local files | |
44 | 2014-10-01 | Patched | aim.com | XSS | XSS on aim.com |