Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-2359
Cross-site scripting (XSS) vulnerability in the FTP view feature in Mozilla 1.0 allows remote malicious users to inject arbitrary web script or HTML via the title tag of an ftp URL.
Mozilla Mozilla 1.0
Mozilla Mozilla 1.1
1 EDB exploit
NA
CVE-2003-0594
Mozilla allows remote malicious users to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Mozilla to send the cookie outside the specified URL subsets, e.g. to a vulnerabl...
Mozilla Mozilla 1.1
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.4.2
Mozilla Mozilla 1.0
Mozilla Mozilla 1.3
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.2
Mozilla Mozilla 1.2.1
Mozilla Mozilla 1.0.2
NA
CVE-2006-5633
Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote malicious users to cause a denial of service (crash) by creating a range object using createRange, calling selectNode on a DocType node (DOCUMENT_TYPE_NODE), then calling createContextualFragment on the range, which trigg...
Mozilla Firefox 2.0
Mozilla Seamonkey 1.1
Mozilla Firefox 1.5.0.7
1 EDB exploit
NA
CVE-2002-1126
Mozilla 1.1 and previous versions, and Mozilla-based browsers such as Netscape and Galeon, set the document referrer too quickly in certain situations when a new page is being loaded, which allows web pages to determine the next page that is being visited, including manually ente...
Mozilla Mozilla 0.9.5
Mozilla Mozilla 0.9.6
Galeon Galeon Browser 1.2.5
Galeon Galeon Browser 1.2.6
Mozilla Mozilla 0.9.9
Mozilla Mozilla 1.0.1
Galeon Galeon Browser 1.2.4
Mozilla Mozilla 0.9.7
Mozilla Mozilla 0.9.8
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.4
Mozilla Mozilla 1.1
NA
CVE-2004-1614
Mozilla allows remote malicious users to cause a denial of service (application crash from invalid memory access) via an "unusual combination of visual elements," including several large MARQUEE tags with large height parameters, as demonstrated by mangleme.
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.0
Mozilla Mozilla 1.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.5
Mozilla Mozilla 1.6
Mozilla Mozilla 1.1
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.4.2
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7.3
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.2.1
Mozilla Mozilla 1.4
Mozilla Mozilla 1.7
Mozilla Mozilla 1.8
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.7.1
NA
CVE-2002-1308
Heap-based buffer overflow in Netscape and Mozilla allows remote malicious users to execute arbitrary code via a jar: URL that references a malformed .jar file, which overflows a buffer during decompression.
Mozilla Mozilla 1.0
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.1
Netscape Navigator 6.2
Netscape Navigator 6.2.1
Mozilla Mozilla 0.9.8
Mozilla Mozilla 0.9.9
Netscape Navigator 7.0
Mozilla Mozilla 0.9.6
Mozilla Mozilla 0.9.7
Netscape Navigator 6.2.2
Netscape Navigator 6.2.3
NA
CVE-2004-0191
Mozilla prior to 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page (zombie document) and enable cross-domain and cross-site scripting (XSS) attacks, as demonstrated using onmousemove events.
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.6
Mozilla Mozilla 0.9.7
Mozilla Mozilla 1.0
Mozilla Mozilla 1.1
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.4
Mozilla Mozilla 0.9.4
Mozilla Mozilla 0.9.4.1
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.2.1
Mozilla Mozilla 1.2
Mozilla Mozilla 1.5
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.48
Mozilla Mozilla 0.9.5
Mozilla Mozilla 1.0.2
Mozilla Mozilla 1.3
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.35
Mozilla Mozilla 0.9.8
NA
CVE-2004-1451
Mozilla prior to 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote malicious users to trick users into clicking on unknown or untrusted sites and facilitate phishing attacks.
Mozilla Mozilla 0.9.48
Mozilla Mozilla 0.9.5
Mozilla Mozilla 0.9.6
Mozilla Mozilla 0.9.7
Mozilla Mozilla 1.2
Mozilla Mozilla 1.3
Mozilla Mozilla 1.3.1
Mozilla Mozilla 1.4
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.4
Mozilla Mozilla 0.9.9
Mozilla Mozilla 1.0.1
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.4.4
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.2
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 1.0
Mozilla Mozilla 1.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 0.9.35
NA
CVE-2007-3511
The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12, 2.0.0.4 and other versions prior to 2.0.0.8, and SeaMonkey prior to 1.1.5 allows remote malicious users to change field focus and copy keystrokes via the "for" attribute in a label, which bypasses t...
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.99
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.0.5
Mozilla Firefox 1.5.0.12
Mozilla Firefox 2.0.0.6
Mozilla Firefox 2.0.0.4
Mozilla Seamonkey 1.0.4
Mozilla Firefox
Mozilla Firefox 2.0.0.5
NA
CVE-2004-1449
Mozilla prior to 1.7, Firefox prior to 0.9, and Thunderbird prior to 0.7 allows remote malicious users to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control.
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.35
Mozilla Mozilla 0.9.4
Mozilla Mozilla 1.1
Mozilla Mozilla 1.2
Mozilla Mozilla 1.2.1
Mozilla Thunderbird 0.1
Mozilla Thunderbird 0.2
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.4
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.48
Mozilla Mozilla 0.9.6
Mozilla Mozilla 1.0
Mozilla Mozilla 1.3
Mozilla Mozilla 1.4
Mozilla Mozilla 1.5.1
Mozilla Thunderbird 0.6
Mozilla Mozilla 0.9.7
Mozilla Mozilla 0.9.8
Mozilla Mozilla 0.9.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »