Vulnerabilities > Origin Validation Error
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-27 | CVE-2022-45139 | Origin Validation Error vulnerability in Wago products A CORS Misconfiguration in the web-based management allows a malicious third party webserver to misuse all basic information pages on the webserver. | 5.3 |
| 2023-01-18 | CVE-2021-33959 | Origin Validation Error vulnerability in Plex Media Server Plex media server 1.21 and before is vulnerable to ddos reflection attack via plex service. | 7.5 |
| 2023-01-10 | CVE-2023-22899 | Origin Validation Error vulnerability in Zip4J Project Zip4J Zip4j through 2.11.2, as used in Threema and other products, does not always check the MAC when decrypting a ZIP archive. | 5.9 |
| 2023-01-09 | CVE-2014-125071 | Origin Validation Error vulnerability in Gribbit Project Gribbit A vulnerability was found in lukehutch Gribbit. | 9.8 |
| 2022-12-27 | CVE-2017-20146 | Origin Validation Error vulnerability in Gorillatoolkit Handlers 1.1/1.2/1.2.1 Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the Access-Control-Allow-Origin header, which bypasses the expected behavior of the Same Origin Policy. | 9.8 |
| 2022-12-22 | CVE-2022-22757 | Origin Validation Error vulnerability in Mozilla Firefox Remote Agent, used in WebDriver, did not validate the Host or Origin headers. | 6.5 |
| 2022-12-22 | CVE-2022-38472 | Origin Validation Error vulnerability in Mozilla Thunderbird An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar. | 6.5 |
| 2022-12-22 | CVE-2022-42927 | Origin Validation Error vulnerability in Mozilla Firefox A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. | 8.1 |
| 2022-12-16 | CVE-2022-41961 | Origin Validation Error vulnerability in Bigbluebutton 2.4 BigBlueButton is an open source web conferencing system. | 4.3 |
| 2022-11-23 | CVE-2022-41924 | Origin Validation Error vulnerability in Tailscale A vulnerability identified in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon `tailscaled`, which can then be used to remotely execute code. | 9.6 |