Vulnerability & Exploit Database

Huawei EulerOS: CVE-2021-43331: mailman security update

Amazon Linux AMI 2: CVE-2021-43331: Security patch for mailman (ALAS-2023-2370)

Red Hat: CVE-2021-38509: CVE-2021-38509 Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain (Multiple Advisories)

SUSE: CVE-2021-41174: SUSE Linux Security Advisory

Ubuntu: (Multiple Advisories) (CVE-2021-38509): Firefox vulnerabilities

CentOS Linux: CVE-2021-38509: Important: firefox security update (Multiple Advisories)

SUSE: CVE-2021-38509: SUSE Linux Security Advisory

MFSA2021-50 Thunderbird: Security Vulnerabilities fixed in Thunderbird 91.3 (CVE-2021-38509)

MFSA2021-48 Firefox: Security Vulnerabilities fixed in Firefox 94 (CVE-2021-38509)

Oracle Linux: CVE-2021-38509: ELSA-2021-4123: firefox security update (IMPORTANT) (Multiple Advisories)

MFSA2021-49 Firefox: Security Vulnerabilities fixed in Firefox ESR 91.3 (CVE-2021-38509)

FreeBSD: VID-9D7A2B54-4468-11EC-8532-0D24C37C72C8 (CVE-2021-43331): mailman -- 2.1.37 fixes XSS via user options, and moderator offline brute-force vuln against list admin password

FreeBSD: VID-33557582-3958-11EC-90BA-001B217B3468 (CVE-2021-39906): Gitlab -- Multiple Vulnerabilities

Atlassian JIRA: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2021-41304)

SUSE: CVE-2021-41178: SUSE Linux Security Advisory

Gentoo Linux: CVE-2021-41178: Nextcloud: Multiple Vulnerabilities

FreeBSD: VID-4B478274-47A0-11EC-BD24-6C3BE5272ACD (CVE-2021-41174): Grafana -- XSS

MediaWiki: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2021-42041)

MediaWiki: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2021-42044)

MediaWiki: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2021-42042)