Vulnerabilities > Origin Validation Error
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-18 | CVE-2021-33959 | Origin Validation Error vulnerability in Plex Media Server Plex media server 1.21 and before is vulnerable to ddos reflection attack via plex service. | 7.5 |
| 2023-01-10 | CVE-2023-22899 | Origin Validation Error vulnerability in Zip4J Project Zip4J Zip4j through 2.11.2, as used in Threema and other products, does not always check the MAC when decrypting a ZIP archive. | 5.9 |
| 2023-01-09 | CVE-2014-125071 | Origin Validation Error vulnerability in Gribbit Project Gribbit A vulnerability was found in lukehutch Gribbit. | 9.8 |
| 2022-12-27 | CVE-2017-20146 | Origin Validation Error vulnerability in Gorillatoolkit Handlers 1.1/1.2/1.2.1 Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the Access-Control-Allow-Origin header, which bypasses the expected behavior of the Same Origin Policy. | 9.8 |
| 2022-12-22 | CVE-2022-22757 | Origin Validation Error vulnerability in Mozilla Firefox Remote Agent, used in WebDriver, did not validate the Host or Origin headers. | 6.5 |
| 2022-12-22 | CVE-2022-38472 | Origin Validation Error vulnerability in Mozilla Thunderbird An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. | 6.5 |
| 2022-12-22 | CVE-2022-42927 | Origin Validation Error vulnerability in Mozilla Firefox A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. | 8.1 |
| 2022-11-23 | CVE-2022-41924 | Origin Validation Error vulnerability in Tailscale A vulnerability identified in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon `tailscaled`, which can then be used to remotely execute code. | 9.6 |
| 2022-10-10 | CVE-2022-41749 | Origin Validation Error vulnerability in Trendmicro Apex ONE 2019 An origin validation error vulnerability in Trend Micro Apex One agents could allow a local attacker to escalate privileges on affected installations. | 7.8 |
| 2022-10-06 | CVE-2022-41294 | Origin Validation Error vulnerability in IBM Robotic Process Automation IBM Robotic Process Automation 21.0.0, 21.0.1, 21.0.2, 21.0.3, and 21.0.4 is vulnerable to cross origin resource sharing using the bot api. | 6.5 |