Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

article directory project article directory vulnerabilities and exploits

(subscribe to this query)
4.8
CVSSv3
CVE-2023-0422
The Article Directory WordPress plugin up to and including 1.3 does not properly sanitize the `publish_terms_text` setting before displaying it in the administration panel, which may enable administrators to conduct Stored XSS attacks in multisite contexts.
Article Directory Project Article Directory
NA
CVE-2008-2808
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly escape HTML in file:// URLs in directory listings, which allows remote malicious users to conduct cross-site scripting (XSS) attacks or have unspecified other impact via a crafted filename.
Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0Mozilla Firefox 2.0 .1Mozilla Seamonkey 1.1.1Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1Mozilla Thunderbird 2.0 .12Mozilla Thunderbird 2.0 8Mozilla Firefox 2.0 .9Mozilla Firefox 2.0 8Mozilla Seamonkey 1.1.8Mozilla Seamonkey 1.1.9Mozilla Thunderbird 2.0 .6Mozilla Thunderbird 2.0 .9Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Firefox 2.0 .5Mozilla Firefox 2.0 .6Mozilla Seamonkey 1.1.5Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7
NA
CVE-2008-4070
Heap-based buffer overflow in Mozilla Thunderbird prior to 2.0.0.17 and SeaMonkey prior to 1.1.12 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long header in a news article, related to "canceling [a] ...
Mozilla Thunderbird 2.0.0.1Mozilla Thunderbird 2.0.0.12Mozilla Thunderbird 2.0.0.4Mozilla Thunderbird 1.0.4Mozilla Thunderbird 2.0.0.11Mozilla Thunderbird 1.5.0.10Mozilla Thunderbird 1.5.0.11Mozilla Thunderbird 0.7.2Mozilla Thunderbird 0.7.3Mozilla Thunderbird 0.9Mozilla Thunderbird 0.1Mozilla Thunderbird 2.0.0.5Mozilla Thunderbird 2.0.0.6Mozilla Thunderbird 2.0.0.9Mozilla Seamonkey 1.0.9Mozilla Seamonkey 1.0.8Mozilla Seamonkey 1.0.5Mozilla Seamonkey 1.0.4Mozilla Thunderbird 1.5.0.9Mozilla Thunderbird 1.5.0.8Mozilla Thunderbird 1.0.8Mozilla Thunderbird 1.5
NA
CVE-2008-4068
Directory traversal vulnerability in Mozilla Firefox prior to 2.0.0.17 and 3.x prior to 3.0.2, Thunderbird prior to 2.0.0.17, and SeaMonkey prior to 1.1.12 allows remote malicious users to bypass "restrictions imposed on local HTML files," and obtain sensitive informati...
Mozilla FirefoxMozilla SeamonkeyMozilla ThunderbirdDebian Debian Linux 4.0Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10
NA
CVE-2008-2801
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly implement JAR signing, which allows remote malicious users to execute arbitrary code via (1) injection of JavaScript into documents within a JAR archive or (2) a JAR archive that uses relative URLs to...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.8Mozilla FirefoxMozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0.0.8Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Firefox 2.0.0.4Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1.3Mozilla SeamonkeyMozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.5Mozilla Firefox 2.0.0.6
NA
CVE-2008-2805
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 allow remote malicious users to force the upload of arbitrary local files from a client computer via vectors involving originalTarget and DOM Range.
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.8Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1.7Mozilla Seamonkey 1.1.8Mozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.6Mozilla Firefox 2.0.0.7Mozilla Seamonkey 1.1.5Mozilla Seamonkey 1.1.6Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.2Mozilla FirefoxMozilla SeamonkeyMozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.5
NA
CVE-2008-2800
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 allow remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.8Mozilla FirefoxMozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0.0.8Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1.3Mozilla SeamonkeyMozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.5Mozilla Firefox 2.0.0.6
NA
CVE-2008-4067
Directory traversal vulnerability in Mozilla Firefox prior to 2.0.0.17 and 3.x prior to 3.0.2, Thunderbird prior to 2.0.0.17, and SeaMonkey prior to 1.1.12 on Linux allows remote malicious users to read arbitrary files via a .. (dot dot) and URL-encoded / (slash) characters in a ...
Mozilla FirefoxMozilla ThunderbirdMozilla SeamonkeyDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04
NA
CVE-2008-2802
Mozilla Firefox prior to 2.0.0.15, Thunderbird 2.0.0.14 and previous versions, and SeaMonkey prior to 1.1.10 allow remote malicious users to execute arbitrary code via an XUL document that includes a script from a chrome: URI that points to a fastload file, related to this file&#...
Mozilla Firefox 2.0.0.12Mozilla Firefox 2.0.0.13Mozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.9Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.8Mozilla Thunderbird 2.0.0.0Mozilla Thunderbird 2.0.0.5Mozilla Thunderbird 2.0.0.6Mozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.7Mozilla Firefox 2.0.0.8Mozilla Seamonkey 1.1.6Mozilla Seamonkey 1.1.7Mozilla Thunderbird 2.0.0.2Mozilla Thunderbird 2.0.0.3Mozilla Thunderbird 2.0.0.4Mozilla ThunderbirdMozilla Firefox 2.0.0.3Mozilla Firefox 2.0.0.4Mozilla Seamonkey 1.1.2
NA
CVE-2008-2803
The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox prior to 2.0.0.15, Thunderbird 2.0.0.14 and previous versions, and SeaMonkey prior to 1.1.10 does not apply XPCNativeWrappers to scripts loaded from (1) file: URIs, (2) data: URIs, or (3) certain non-canonical chrom...
Mozilla Firefox 2.0Mozilla Firefox 2.0.0.1Mozilla Firefox 2.0.0.4Mozilla Firefox 2.0.0.5Mozilla Seamonkey 1.1.4Mozilla Seamonkey 1.1.5Mozilla Thunderbird 2.0.0.12Mozilla Thunderbird 2.0.0.13Mozilla Thunderbird 2.0.0.9Mozilla FirefoxMozilla Firefox 2.0.0.2Mozilla Firefox 2.0.0.3Mozilla Seamonkey 1.1Mozilla Seamonkey 1.1.2Mozilla Seamonkey 1.1.3Mozilla Thunderbird 2.0.0.1Mozilla Thunderbird 2.0.0.11Mozilla Thunderbird 2.0.0.6Mozilla Thunderbird 2.0.0.8Mozilla Firefox 2.0.0.10Mozilla Firefox 2.0.0.11Mozilla Firefox 2.0.0.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook