BCN Quark Quarking Password Manager 3.1.84 suffers from a clickjacking vulnerability caused by allowing * within web_accessible_resources. An attacker can take advantage of this vulnerability and cause significant harm.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/153405/Quarking-Password-Manager-3.1.84-Clickjacking.html | |
http://seclists.org/fulldisclosure/2019/Jun/31 | Mailing List Third Party Advisory |
https://chrome.google.com/webstore/detail/quarking-password-manager/gfkmpfajamepgekgohcdnjogmeamcdmm?hl=en | Product Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-06-24T18:39:30
Updated: 2019-06-25T00:06:09
Reserved: 2019-06-18T00:00:00
Link: CVE-2019-12880
JSON object: View
NVD Information
Status : Modified
Published: 2019-06-24T19:15:10.600
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-12880
JSON object: View
Redhat Information
No data.
CWE