firefox vulnerabilities and exploits

NA
CVE-2013-1689

Mozilla Firefox 20.0a1 and earlier allows remote attackers to cause a denial of service (crash), related to event handling with frames....

NA
CVE-2019-17554

The XML content type entity deserializer in Apache Olingo versions 4.0.0 to 4.6.0 is not configured to deny the resolution of external entities. Request with content type "application/xml", which trigger the deserialization of entities, can be used to trigger XXE...

NA
CVE-2019-16885

In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remote code execution by injecting a malicious PHP object via a crafted cookie. This could happen at two places: first in view/ProductsView.php using the cookie price_filter, and second in api/Comparison.php via...

9
CVSSv2
CVE-2019-12733

SiteVision 4 allows Remote Code Execution....

6.5
CVSSv2
CVE-2019-12734

SiteVision 4 has Incorrect Access Control....

7.5
CVSSv2
CVE-2019-16702

Integard Pro 2.2.0.9026 allows remote attackers to execute arbitrary code via a buffer overflow involving a long NoJs parameter to the /LoginAdmin URI....

Integard Pro ProjectIntegard Pro
NA
CVE-2019-17011

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free when retrieving a document in antitracking. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using...

NA
CVE-2019-17012

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack...

NA
CVE-2019-17008

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in worker destruction. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack vectors...

NA
CVE-2019-11756

Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free of SFTKSession object. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack vectors...