qutebrowser@0.5.0 vulnerabilities
A keyboard-driven, vim-like browser based on Python and Qt.
-
latest version
3.1.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
5 months ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the qutebrowser package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
qutebrowser is a keyboard-driven, vim-like browser based on PyQt5. Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF). This may be exploited to cause websites to access How to fix Cross-site Request Forgery (CSRF)? Upgrade |
[,1.4.1)
|
qutebrowser is a keyboard-driven, vim-like browser based on PyQt5. Affected versions of this package are vulnerable to Detection of Error Condition Without Action. Eeloading a page with certificate errors shows a green URL. After a certificate error was overridden by the user, qutebrowser displays the URL as yellow ( How to fix Detection of Error Condition Without Action? Upgrade |
[,1.11.1)
|
qutebrowser is a keyboard-driven, vim-like browser based on PyQt5. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the history command. A malicious user could inject a javascript code and might steal a user's browsing history when the user visits a page with an html input element as it's title. How to fix Cross-site Scripting (XSS)? Upgrade |
[0.1.1,1.3.3)
|