VYPR

Pacparser

by Unspecified

CVEs (2)

  • CVE-2023-37360MedJun 30, 2023
    risk 0.38cvss 5.9epss 0.00

    pacparser_find_proxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly privilege escalation, when the attacker controls the URL (which may be realistic within enterprise security products).

  • CVE-2019-25078MedDec 13, 2022
    risk 0.00cvss 5.3epss 0.00

    A vulnerability classified as problematic was found in pacparser up to 1.3.x. Affected by this vulnerability is the function pacparser_find_proxy of the file src/pacparser.c. The manipulation of the argument url leads to buffer overflow. Attacking locally is a requirement.…