Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 20.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2013-1700
The Mozilla Maintenance Service in Mozilla Firefox prior to 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges via vectors involving placement of a Trojan horse executable file at an arbitr...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
6.9
CVSSv2
CVE-2013-1715
Multiple untrusted search path vulnerabilities in the (1) full installer and (2) stub installer in Mozilla Firefox prior to 23.0 on Windows allow local users to gain privileges via a Trojan horse DLL in the default downloads directory. NOTE: this issue exists because of an incomp...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox 21.0
Mozilla Firefox
4
CVSSv2
CVE-2013-1727
Mozilla Firefox prior to 24.0 on Android allows malicious users to bypass the Same Origin Policy, and consequently conduct cross-site scripting (XSS) attacks or obtain password or cookie information, by using a symlink in conjunction with a file: URL for a local file.
Mozilla Firefox 19.0
Mozilla Firefox 22.0
Mozilla Firefox 20.0
Mozilla Firefox
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox 23.0
Mozilla Firefox 21.0
Mozilla Firefox 20.0.1
1 EDB exploit
2.6
CVSSv2
CVE-2013-1729
The WebGL implementation in Mozilla Firefox prior to 24.0, when NVIDIA graphics drivers are used on Mac OS X, allows remote malicious users to obtain desktop-screenshot data by reading from a CANVAS element.
Mozilla Firefox 20.0
Mozilla Firefox
Mozilla Firefox 23.0
Mozilla Firefox 19.0
Mozilla Firefox 22.0
Mozilla Firefox 21.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
6.8
CVSSv2
CVE-2013-1731
Untrusted search path vulnerability in the GL tracing functionality in Mozilla Firefox prior to 24.0 on Android allows malicious users to execute arbitrary code via a Trojan horse .so file in a world-writable directory.
Mozilla Firefox 22.0
Mozilla Firefox 21.0
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox 23.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0
Mozilla Firefox 20.0.1
Mozilla Firefox 20.0
10
CVSSv2
CVE-2013-5592
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 25.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 20.0.1
Mozilla Firefox 20.0
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0
Mozilla Firefox
Mozilla Firefox 23.0.1
Mozilla Firefox 23.0
Mozilla Firefox 22.0
Mozilla Firefox 21.0
10
CVSSv2
CVE-2013-0790
Unspecified vulnerability in the browser engine in Mozilla Firefox prior to 20.0 on Android allows remote malicious users to cause a denial of service (stack memory corruption and application crash) or possibly execute arbitrary code via unknown vectors involving a plug-in.
Mozilla Firefox 18.0
Mozilla Firefox 18.0.1
Mozilla Firefox 15.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 10.0.2
Mozilla Firefox 10.0
Mozilla Firefox 7.0
Mozilla Firefox 6.0
Mozilla Firefox 6.0.2
Mozilla Firefox 4.0
Mozilla Firefox 3.6.21
Mozilla Firefox 18.0.2
Mozilla Firefox 17.0.1
Mozilla Firefox 17.0
Mozilla Firefox 14.0
Mozilla Firefox 13.0
Mozilla Firefox 10.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox 6.0.1
Mozilla Firefox 5.0
Mozilla Firefox 3.0.14
Mozilla Firefox 3.6.2
8.3
CVSSv2
CVE-2013-5598
PDF.js in Mozilla Firefox prior to 25.0 and Firefox ESR 24.x prior to 24.1 does not properly handle the appending of an IFRAME element, which allows remote malicious users to read arbitrary files or execute arbitrary JavaScript code with chrome privileges by using this element wi...
Mozilla Firefox Esr 24.0.1
Mozilla Firefox Esr 24.0.2
Mozilla Firefox Esr 24.0
Mozilla Firefox 21.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0.1
Mozilla Firefox 23.0
Mozilla Firefox 19.0
Mozilla Firefox 22.0
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 23.0.1
9.3
CVSSv2
CVE-2013-1685
Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 allows remote malicious users to execute arbitrary code or cause a de...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.5
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.4
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
9.3
CVSSv2
CVE-2013-1687
The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implementations in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 do not properly restrict XBL user-defined functions, which allow...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.5
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »