Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnome epiphany vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-11396
ephy-session.c in libephymain.so in GNOME Web (aka Epiphany) up to and including 3.28.2.1 allows remote malicious users to cause a denial of service (application crash) via JavaScript code that triggers access to a NULL URL, as demonstrated by a crafted window.open call.
Gnome Epiphany
1 Github repository
5
CVSSv2
CVE-2017-1000025
GNOME Web (Epiphany) 3.23 prior to 3.23.5, 3.22 prior to 3.22.6, 3.20 prior to 3.20.7, 3.18 prior to 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.
Gnome Epiphany 3.23.1.2
Gnome Epiphany 3.18.0
Gnome Epiphany 3.18.1
Gnome Epiphany 3.18.4
Gnome Epiphany 3.18.6
Gnome Epiphany 3.20.0
Gnome Epiphany 3.20.2
Gnome Epiphany 3.20.4
Gnome Epiphany 3.22.2
Gnome Epiphany 3.22.4
Gnome Epiphany 3.18.2
Gnome Epiphany 3.20.5
Gnome Epiphany 3.20.6
Gnome Epiphany 3.22.0
Gnome Epiphany 3.22.1
Gnome Epiphany 3.18.7
Gnome Epiphany 3.18.8
Gnome Epiphany 3.18.9
Gnome Epiphany 3.18.10
Gnome Epiphany 3.23.1
Gnome Epiphany 3.23.2
Gnome Epiphany 3.23.3
5.8
CVSSv2
CVE-2010-3312
Epiphany 2.28 and 2.29, when WebKit and LibSoup are used, unconditionally displays a closed-lock icon for any URL beginning with the https: substring, without any warning to the user, which allows man-in-the-middle malicious users to spoof arbitrary https web sites via a crafted ...
Gnome Epiphany 2.28
Gnome Epiphany 2.29
6.8
CVSSv2
CVE-2010-1215
Mozilla Firefox 3.6.x prior to 3.6.7 and Thunderbird 3.1.x prior to 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper (aka SJOW) wrapper, which allows remote malicious users to execute arbitrary JavaScript code with chrome privileges by leve...
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Thunderbird 3.1
4.3
CVSSv2
CVE-2010-1207
Mozilla Firefox prior to 3.6.7 and Thunderbird prior to 3.1.1 do not properly implement read restrictions for CANVAS elements, which allows remote malicious users to obtain sensitive cross-origin information via vectors involving reference retention and node deletion.
Mozilla Firefox 3.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.4
Mozilla Firefox
Mozilla Firefox 3.6.3
Mozilla Thunderbird
9.3
CVSSv2
CVE-2010-1208
Use-after-free vulnerability in the attribute-cloning functionality in the DOM implementation in Mozilla Firefox 3.5.x prior to 3.5.11 and 3.6.x prior to 3.6.7, and SeaMonkey prior to 2.0.6, allows remote malicious users to execute arbitrary code via vectors related to deletion o...
Mozilla Firefox
Mozilla Seamonkey
9.3
CVSSv2
CVE-2010-1209
Use-after-free vulnerability in the NodeIterator implementation in Mozilla Firefox 3.5.x prior to 3.5.11 and 3.6.x prior to 3.6.7, and SeaMonkey prior to 2.0.6, allows remote malicious users to execute arbitrary code via a crafted NodeFilter that detaches DOM nodes, related to th...
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.7
Mozilla Firefox 3.6.6
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.2
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.10
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.12
Mozilla Seamonkey 1.1.19
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.0.2
4.3
CVSSv2
CVE-2010-1210
intl/uconv/util/nsUnicodeDecodeHelper.cpp in Mozilla Firefox prior to 3.6.7 and Thunderbird prior to 3.1.1 inserts a U+FFFD sequence into text in certain circumstances involving undefined positions, which might make it easier for remote malicious users to conduct cross-site scrip...
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.10
Mozilla Firefox 3.6.1
Mozilla Firefox 3.1
Mozilla Firefox 3.0
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.13
Mozilla Firefox 3.0.12
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.19
Mozilla Firefox 2.0.0.20
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.5
9.3
CVSSv2
CVE-2010-1211
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x prior to 3.5.11 and 3.6.x prior to 3.6.7, Thunderbird 3.0.x prior to 3.0.6 and 3.1.x prior to 3.1.1, and SeaMonkey prior to 2.0.6 allow remote malicious users to cause a denial of service (memory ...
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.10
Mozilla Firefox 3.6.1
Mozilla Firefox 3.5.4
Mozilla Firefox 3.5.5
Mozilla Firefox 3.5.6
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5.9
Mozilla Thunderbird 3.0.2
Mozilla Thunderbird 3.0.3
Mozilla Thunderbird 3.1
Mozilla Thunderbird 3.0
Mozilla Thunderbird 3.0.4
Mozilla Thunderbird 3.0.5
Mozilla Thunderbird 3.0.1
Mozilla Seamonkey 1.0.1
9.3
CVSSv2
CVE-2010-1212
js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x prior to 3.6.7 and Thunderbird 3.1.x prior to 3.1.1 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1...
Mozilla Firefox 3.6.1
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Thunderbird 3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
open redirect
CVE-2024-3946
LFI
CVE-2024-25977
CVE-2024-36368
CVE-2024-23109
CVE-2024-23580
CVE-2024-23108
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »