VYPR
Unrated severityNVD Advisory· Published Aug 4, 2005· Updated Jun 16, 2026

CVE-2005-2455

CVE-2005-2455

Description

Greasemonkey before 0.3.5 allows remote web servers to (1) read arbitrary files via a GET request to a file:// URL in the GM_xmlhttpRequest API function, (2) list installed scripts using GM_scripts, or obtain sensitive information via (3) GM_setValue and GM_getValue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:greasemonkey:greasemonkey:0.3.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:greasemonkey:greasemonkey:0.3.3:*:*:*:*:*:*:*
    • (no CPE)range: <0.3.5

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.