Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
click project click - vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2013-1493
The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and previous versions, 6 Update 41 and previous versions, and 5.0 Update 40 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (crash...
Oracle Jre 1.7.0
Oracle Jre
Sun Jre 1.5.0
Oracle Jre 1.5.0
Sun Jdk 1.6.0
Oracle Jdk 1.6.0
Oracle Jdk
Sun Jre 1.6.0
Oracle Jre 1.6.0
Sun Jdk 1.5.0
Oracle Jdk 1.5.0
Oracle Jdk 1.7.0
1 EDB exploit
3 Articles
NA
CVE_2023_46805
Penetration testing of https://ris.ucll.be/ Tools used Nmap It looks like the host is running on Azure since the ports are open by default 1221 and 8172. This is also indicated by the fingerprint Microsoft Azure Web App. The Python webserver being used is Gunicorn, it is a Unix b...
1 Github repository
383
VMScore
CVE-2008-4066
Mozilla Firefox 2.0.0.14, and other versions prior to 2.0.0.17, allows remote malicious users to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via HTML-escaped low surrogate characters that are ignored by the HTML parser, as demonstrated by a &qu...
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.14
828
VMScore
CVE-2008-3837
Mozilla Firefox prior to 2.0.0.17 and 3.x prior to 3.0.2, and SeaMonkey prior to 1.1.12, allow user-assisted remote malicious users to move a window during a mouse click, and possibly force a file download or unspecified other drag-and-drop action, via a crafted onmousedown actio...
Mozilla Firefox
Mozilla Seamonkey
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
383
VMScore
CVE-2006-2785
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 1.5.0.4 allows user-assisted remote malicious users to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute contains a ...
Mozilla Firefox
383
VMScore
CVE-2006-2782
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote malicious users to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.
Mozilla Seamonkey
Mozilla Firefox
570
VMScore
CVE-2006-2781
Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.
Mozilla Seamonkey
Mozilla Thunderbird
668
VMScore
CVE-2005-0752
The Plugin Finder Service (PFS) in Firefox prior to 1.0.3 allows remote malicious users to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag.
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.10.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.10
383
VMScore
CVE-2006-1729
Mozilla Firefox 1.x prior to 1.5.0.2 and 1.0.x prior to 1.0.8, Mozilla Suite prior to 1.7.13, and SeaMonkey prior to 1.0.1 allows remote malicious users to read arbitrary files by (1) inserting the target filename into a text box, then turning that box into a file upload control,...
Mozilla Mozilla Suite
Mozilla Seamonkey
Mozilla Firefox
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
383
VMScore
CVE-2006-2783
Mozilla Firefox and Thunderbird prior to 1.5.0.4 strip the Unicode Byte-order-Mark (BOM) from a UTF-8 page before the page is passed to the parser, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via a BOM sequence in the middle of a dangerous ta...
Mozilla Firefox
Mozilla Thunderbird
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »