{"id":13797245,"url":"https://github.com/lylemi/dom-vuln-db","last_synced_at":"2026-06-28T05:13:04.567Z","repository":{"id":107360428,"uuid":"150569712","full_name":"LyleMi/dom-vuln-db","owner":"LyleMi","description":"A collection of Browser DOM Vulnerabilities with PoCs ","archived":false,"fork":false,"pushed_at":"2018-11-20T04:01:23.000Z","size":22,"stargazers_count":39,"open_issues_count":0,"forks_count":17,"subscribers_count":7,"default_branch":"master","last_synced_at":"2024-08-04T23:11:00.901Z","etag":null,"topics":["browser","browser-dom-vulnerabilities","cve"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/LyleMi.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2018-09-27T10:27:26.000Z","updated_at":"2022-06-25T03:46:39.000Z","dependencies_parsed_at":"2023-05-22T12:00:40.419Z","dependency_job_id":null,"html_url":"https://github.com/LyleMi/dom-vuln-db","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/LyleMi%2Fdom-vuln-db","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/LyleMi%2Fdom-vuln-db/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/LyleMi%2Fdom-vuln-db/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/LyleMi%2Fdom-vuln-db/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/LyleMi","download_url":"https://codeload.github.com/LyleMi/dom-vuln-db/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225167415,"owners_count":17431595,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["browser","browser-dom-vulnerabilities","cve"],"created_at":"2024-08-03T23:01:25.882Z","updated_at":"2026-06-28T05:13:04.507Z","avatar_url":"https://github.com/LyleMi.png","language":null,"funding_links":[],"categories":["\u003ca id=\"8c5a692b5d26527ef346687e047c5c21\"\u003e\u003c/a\u003e收集"],"sub_categories":[],"readme":"# Case Study of Browser DOM Vulnerabilities\n\n\u003e Inspired by [js-vuln-db](https://github.com/tunz/js-vuln-db)\n\n## Chrome\n\nCVE Number / ID | Module | Label | Credit\n--------------- | ------ | ----- | ------\n[CVE-2018-6073](./Chrome/CVE-2018-6073.md) | WebGL | Heap Overflow | om...@krash.in\n[CVE-2018-16082](./Chrome/CVE-2018-16082.md) | sw::Surface | Stack Overflow | om...@krash.in\n[CR-666246](./Chrome/CR-666246.md) | HTMLSelectElement | UAF | ifratric\n\n## Firefox\n\nCVE Number | Module | Label | Credit\n---------- | ------ | ----- | ------\n[CVE-2016-9079](./Firefox/CVE-2016-9079.md) | nsSMILTimeContainer | UAF | Daniel Veditz\n[CVE-2017-5447](./Firefox/CVE-2017-5447.md) | gfxTextRun | OOB Read | ifratric\n[CVE-2017-5465](./Firefox/CVE-2017-5465.md) | ConvolvePixel | Memory Disclosure | ifratric\n\n## Edge\n\nCVE Number | Module | Label | Credit\n---------- | ------ | ----- | ------\n[CVE-2016-0003](./Edge/CVE-2016-0003.md) | CDOMTextNode | Type Confusion | unknown\n[CVE-2017-0037](./Edge/CVE-2017-0037.md) | CssParser | Type Confusion | ifratric\n[CVE-2017-8496](./Edge/CVE-2017-8496.md) | CssParser | Type Confusion | ifratric\n[CVE-2018-1021](./Edge/CVE-2018-1021.md) | CFormElement | OOB Read | akayn\n\n## Webkit\n\nCVE Number | Module | Label | Credit\n---------- | ------ | ----- | ------\n[CVE-2018-4197](./Webkit/CVE-2018-4197.md) | RenderTreeBuilder | UAF | ifratric\n[CVE-2018-4306](./Webkit/CVE-2018-4306.md) | Node | UAF | ifratric\n[CVE-2018-4312](./Webkit/CVE-2018-4312.md) | AXObjectCache | UAF | ifratric\n[CVE-2018-4315](./Webkit/CVE-2018-4315.md) | SVGTRefElement | UAF, SVG | ifratric\n[CVE-2018-4317](./Webkit/CVE-2018-4317.md) | RenderLayer | UAF | ifratric\n[CVE-2018-4318](./Webkit/CVE-2018-4318.md) | SVGTextLayoutAttributes | UAF, SVG | ifratric\n[CVE-2018-4323](./Webkit/CVE-2018-4323.md) | RenderMultiColumnSet | UAF | ifratric\n[CVE-2018-4328](./Webkit/CVE-2018-4328.md) | InlineTextBox | OOB Read | ifratric\n\n## IE\n\nCVE Number | Module | Label | Credit\n---------- | ------ | ----- | ------\n[CVE-2012-4792](./IE/CVE-2012-4792.md) | CButton | UAF | unknown\n[CVE-2015-6152](./IE/CVE-2015-6152.md) | CObjectElement | UAF | unknown\n[CVE-2018-8460](./IE/CVE-2018-8460.md) | CStyleAttrArray | Double Free | Simon Zuckerbraun\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flylemi%2Fdom-vuln-db","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flylemi%2Fdom-vuln-db","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flylemi%2Fdom-vuln-db/lists"}