Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liu die vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4066
Mozilla Firefox 2.0.0.14, and other versions prior to 2.0.0.17, allows remote malicious users to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via HTML-escaped low surrogate characters that are ignored by the HTML parser, as demonstrated by a &qu...
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.16
NA
CVE-2008-2810
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly identify the context of Windows shortcut files, which allows user-assisted remote malicious users to bypass the Same Origin Policy via a crafted web site for which the user has previously saved a shor...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1.8
Mozilla Firefox
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.6
Mozilla Firefox 2.0.0.7
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Seamonkey 1.1.4
Mozilla Seamonkey 1.1.5
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.2
NA
CVE-2008-4070
Heap-based buffer overflow in Mozilla Thunderbird prior to 2.0.0.17 and SeaMonkey prior to 1.1.12 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long header in a news article, related to "canceling [a] ...
Mozilla Thunderbird 2.0.0.1
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 2.0.0.4
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 2.0.0.11
Mozilla Thunderbird 1.5.0.10
Mozilla Thunderbird 1.5.0.11
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 0.9
Mozilla Thunderbird 0.1
Mozilla Thunderbird 2.0.0.5
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 2.0.0.9
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.4
Mozilla Thunderbird 1.5.0.9
Mozilla Thunderbird 1.5.0.8
Mozilla Thunderbird 1.0.8
Mozilla Thunderbird 1.5
NA
CVE-2004-0380
The MHTML protocol handler in Microsoft Outlook Express 5.5 SP2 through Outlook Express 6 SP1 allows remote malicious users to bypass domain restrictions and execute arbitrary code, as demonstrated on Internet Explorer using script in a compiled help (CHM) file that references th...
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
3 EDB exploits
NA
CVE-2008-0304
Heap-based buffer overflow in Mozilla Thunderbird prior to 2.0.0.12 and SeaMonkey prior to 1.1.8 might allow remote malicious users to execute arbitrary code via a crafted external-body MIME type in an e-mail message, related to an incorrect memory allocation during message previ...
Mozilla Seamonkey
Mozilla Thunderbird
NA
CVE-2008-2800
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 allow remote malicious users to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.8
Mozilla Firefox
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.8
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.6
NA
CVE-2008-2801
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly implement JAR signing, which allows remote malicious users to execute arbitrary code via (1) injection of JavaScript into documents within a JAR archive or (2) a JAR archive that uses relative URLs to...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.8
Mozilla Firefox
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.8
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.6
NA
CVE-2008-2805
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 allow remote malicious users to force the upload of arbitrary local files from a client computer via vectors involving originalTarget and DOM Range.
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.1.8
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.6
Mozilla Firefox 2.0.0.7
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.1.6
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.2
Mozilla Firefox
Mozilla Seamonkey
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
NA
CVE-2008-2808
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly escape HTML in file:// URLs in directory listings, which allows remote malicious users to conduct cross-site scripting (XSS) attacks or have unspecified other impact via a crafted filename.
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0
Mozilla Firefox 2.0 .1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1
Mozilla Thunderbird 2.0 .12
Mozilla Thunderbird 2.0 8
Mozilla Firefox 2.0 .9
Mozilla Firefox 2.0 8
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1.9
Mozilla Thunderbird 2.0 .6
Mozilla Thunderbird 2.0 .9
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0 .5
Mozilla Firefox 2.0 .6
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
NA
CVE-2008-2933
Mozilla Firefox prior to 2.0.0.16, and 3.x prior to 3.0.1, interprets '|' (pipe) characters in a command-line URI as requests to open multiple tabs, which allows remote malicious users to access chrome:i URIs, or read arbitrary local files via manipulations involving a ...
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.8
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0 8
Mozilla Firefox 3.0
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »