Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpcom xpcom vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-2871
Buffer overflow in the International Domain Name (IDN) support in Mozilla Firefox 1.0.6 and previous versions, and Netscape 8.0.3.3 and 7.2, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a hostname with all "soft&q...
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0
Mozilla Firefox 1.5
1 EDB exploit
7.5
CVSSv2
CVE-2005-2701
Heap-based buffer overflow in Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 allows remote malicious users to execute arbitrary code via an XBM image file that ends in a large number of spaces instead of the expected end tag.
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0
Mozilla Mozilla Suite 1.7.7
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox
Mozilla Mozilla Suite
Mozilla Mozilla Suite 1.7.10
Mozilla Mozilla Suite 1.7.6
7.5
CVSSv2
CVE-2005-2702
Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters.
Mozilla Firefox 1.0
Mozilla Mozilla Suite 1.7.6
Mozilla Mozilla Suite 1.7.7
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Mozilla Suite
Mozilla Firefox 1.0.5
Mozilla Mozilla Suite 1.7.10
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox
5
CVSSv2
CVE-2005-2703
Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 allows remote malicious users to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smuggling and HTTP request s...
Mozilla Firefox 1.0.5
Mozilla Mozilla Suite 1.7.10
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0
Mozilla Mozilla Suite 1.7.6
Mozilla Mozilla Suite 1.7.7
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox
Mozilla Mozilla Suite
7.5
CVSSv2
CVE-2005-2705
Integer overflow in the JavaScript engine in Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 might allow remote malicious users to execute arbitrary code.
Mozilla Mozilla Suite 1.7.10
Mozilla Mozilla Suite 1.7.6
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox
Mozilla Mozilla Suite
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla Suite 1.7.7
Mozilla Mozilla Suite 1.7.8
6.4
CVSSv2
CVE-2005-2706
Firefox prior to 1.0.7 and Mozilla before Suite 1.7.12 allows remote malicious users to execute Javascript with chrome privileges via an about: page such as about:mozilla.
Mozilla Firefox 1.0.2
Mozilla Mozilla Suite 1.7.10
Mozilla Mozilla Suite 1.7.6
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla Suite 1.7.7
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox 1.0.3
Mozilla Firefox
Mozilla Mozilla Suite
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
5
CVSSv2
CVE-2005-2707
Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 allows remote malicious users to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks.
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox
Mozilla Mozilla Suite
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Mozilla Suite 1.7.10
Mozilla Firefox 1.0
Mozilla Mozilla Suite 1.7.6
Mozilla Mozilla Suite 1.7.7
7.5
CVSSv2
CVE-2005-2968
Firefox 1.0.6 and Mozilla 1.7.10 allows malicious users to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.
Mozilla Mozilla 1.7.10
Mozilla Firefox 1.0.6
1 EDB exploit
9.3
CVSSv2
CVE-2009-3376
Mozilla Firefox prior to 3.0.15 and 3.5.x prior to 3.5.4, and SeaMonkey prior to 2.0, does not properly handle a right-to-left override (aka RLO or U+202E) Unicode character in a download filename, which allows remote malicious users to spoof file extensions via a crafted filenam...
Mozilla Firefox 3.0.10
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.8
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.16
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.5.0.9
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.5.3
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.15
NA
CVE-2023-25731
Due to URL previews in the network panel of developer tools improperly storing URLs, query parameters could potentially be used to overwrite global objects in privileged code. This vulnerability affects Firefox < 110.
Mozilla Firefox
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »