Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla focus vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-0416
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox prior to 2.0.0.12, Thunderbird prior to 2.0.0.12, and SeaMonkey prior to 1.1.8 allow remote malicious users to inject arbitrary web script or HTML via certain character encodings, including (1) a backspace cha...
Mozilla Thunderbird
Mozilla Seamonkey
Mozilla Firefox
4.3
CVSSv2
CVE-2008-0418
Directory traversal vulnerability in Mozilla Firefox prior to 2.0.0.12, Thunderbird prior to 2.0.0.12, and SeaMonkey prior to 1.1.8, when using "flat" addons, allows remote malicious users to read arbitrary Javascript, image, and stylesheet files via the chrome: URI sch...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
1 EDB exploit
4.3
CVSSv2
CVE-2008-0591
Mozilla Firefox prior to 2.0.0.12 and Thunderbird prior to 2.0.0.12 does not properly manage a delay timer used in confirmation dialogs, which might allow remote malicious users to trick users into confirming an unsafe action, such as remote file execution, by using a timer to ch...
Mozilla Firefox
Mozilla Thunderbird
4.3
CVSSv2
CVE-2008-0592
Mozilla Firefox prior to 2.0.0.12 and SeaMonkey prior to 1.1.8 allows user-assisted remote malicious users to cause a denial of service via a plain .txt file with a "Content-Disposition: attachment" and an invalid "Content-Type: plain/text," which prevents Fir...
Mozilla Firefox
Mozilla Seamonkey
9.3
CVSSv2
CVE-2008-0419
Mozilla Firefox prior to 2.0.0.12 and SeaMonkey prior to 1.1.8 allows remote malicious users to steal navigation history and cause a denial of service (crash) via images in a page that uses designMode frames, which triggers memory corruption related to resize handles.
Mozilla Firefox
Mozilla Seamonkey
4.3
CVSSv2
CVE-2007-5339
Multiple vulnerabilities in Mozilla Firefox prior to 2.0.0.8, Thunderbird prior to 2.0.0.8, and SeaMonkey prior to 1.1.5 allow remote malicious users to cause a denial of service (crash) via crafted HTML that triggers memory corruption or assert errors.
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox
4.3
CVSSv2
CVE-2007-5340
Multiple vulnerabilities in the Javascript engine in Mozilla Firefox prior to 2.0.0.8, Thunderbird prior to 2.0.0.8, and SeaMonkey prior to 1.1.5 allow remote malicious users to cause a denial of service (crash) via crafted HTML that triggers memory corruption.
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox
2.1
CVSSv2
CVE-2020-12394
A logic flaw in our location bar implementation could have allowed a local malicious user to spoof the current location by selecting a different origin and removing focus from the input element. This vulnerability affects Firefox < 76.
Mozilla Firefox
4.3
CVSSv2
CVE-2007-5334
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote malicious users to conduct phishing and spoofing attacks by setting the hidechrome attribute.
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2023-25734
After downloading a Windows <code>.url</code> shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.<...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »