VYPR

Yoono

by Yoono

CVEs (2)

  • CVE-2012-1215Feb 21, 2012
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the Add friends module in the Yoono extension before 7.7.8 for Firefox allows remote attackers to inject arbitrary web script or HTML via the create field in a "Create a group" action.

  • CVE-2009-4100Nov 29, 2009
    risk 0.00cvss epss 0.04

    Yoono extension before 6.1.1 for Firefox performs certain operations with chrome privileges, which allows user-assisted remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via DOM event handlers such as onload.