Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
morgan project morgan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-5413
An attacker can use the format parameter to inject arbitrary commands in the npm package morgan < 1.9.1.
Morgan Project Morgan
3 Github repositories
9.8
CVSSv3
CVE-2022-25921
All versions of package morgan-json are vulnerable to Arbitrary Code Execution due to missing sanitization of input passed to the Function constructor.
Morgan-json Project Morgan-json
NA
CVE-2009-3981
Unspecified vulnerability in the browser engine in Mozilla Firefox prior to 3.0.16, SeaMonkey prior to 2.0.1, and Thunderbird allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vector...
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.0.99
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.5.0.9
Mozilla Seamonkey 2.0
Mozilla Firefox 0.6.1
Mozilla Firefox 0.3
Mozilla Firefox 0.8
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.9
NA
CVE-2009-3979
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 3.0.16 and 3.5.x prior to 3.5.6, SeaMonkey prior to 2.0.1, and Thunderbird allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execut...
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.99
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.13
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 2.0
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.8
NA
CVE-2009-3986
Mozilla Firefox prior to 3.0.16 and 3.5.x prior to 3.5.6, and SeaMonkey prior to 2.0.1, allows remote malicious users to execute arbitrary JavaScript with chrome privileges by leveraging a reference to a chrome window from a content window, related to the window.opener property.
Mozilla Firefox 3.5.1
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.0.99
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.5.0.9
Mozilla Seamonkey 2.0
Mozilla Firefox 0.10.1
Mozilla Firefox 0.6.1
Mozilla Firefox 0.8
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9
NA
CVE-2009-3983
Mozilla Firefox prior to 3.0.16 and 3.5.x prior to 3.5.6, and SeaMonkey prior to 2.0.1, allows remote malicious users to send authenticated requests to arbitrary applications by replaying the NTLM credentials of a browser user.
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.14
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.13
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 2.0
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5
Mozilla Firefox 1.5.6
NA
CVE-2009-3984
Mozilla Firefox prior to 3.0.16 and 3.5.x prior to 3.5.6, and SeaMonkey prior to 2.0.1, allows remote malicious users to spoof an SSL indicator for an http URL or a file URL by setting document.location to an https URL corresponding to a site that responds with a No Content (aka ...
Mozilla Seamonkey 1.5.0.9
Mozilla Seamonkey 2.0
Mozilla Firefox 0.6.1
Mozilla Firefox 0.3
Mozilla Firefox 0.8
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0 .1
Mozilla Firefox 2.0 .10
NA
CVE-2009-3985
Mozilla Firefox prior to 3.0.16 and 3.5.x prior to 3.5.6, and SeaMonkey prior to 2.0.1, allows remote malicious users to associate spoofed content with an invalid URL by setting document.location to this URL, and then writing arbitrary web script or HTML to the associated blank d...
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.99
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.13
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 2.0
Mozilla Firefox 0.3
Mozilla Firefox 0.4
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started