Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jackson vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-4058
The XPConnect component in Mozilla Firefox prior to 2.0.0.17 and 3.x prior to 3.0.2, Thunderbird prior to 2.0.0.17, and SeaMonkey prior to 1.1.12 allows remote malicious users to "pollute XPCNativeWrappers" and execute arbitrary code with chrome privileges via vectors r...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
7.5
CVSSv2
CVE-2008-4059
The XPConnect component in Mozilla Firefox prior to 2.0.0.17 allows remote malicious users to "pollute XPCNativeWrappers" and execute arbitrary code with chrome privileges via vectors related to a SCRIPT element.
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.12
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.6
Mozilla Firefox 2.0.0.13
Mozilla Firefox
Mozilla Firefox 1.5.0.12
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.6
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0
Mozilla Firefox 0.10
Mozilla Firefox 0.8
Mozilla Firefox 1.0.3
Mozilla Firefox 0.9
Mozilla Firefox 1.5
Mozilla Firefox 1.0.8
7.5
CVSSv2
CVE-2008-4060
Mozilla Firefox prior to 2.0.0.17 and 3.x prior to 3.0.2, Thunderbird prior to 2.0.0.17, and SeaMonkey prior to 1.1.12 allow remote malicious users to create documents that lack script-handling objects, and execute arbitrary code with chrome privileges, via vectors related to (1)...
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.13
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey
Mozilla Thunderbird 2.0.0.1
Mozilla Thunderbird 1.5.1
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 1.0.2
7.5
CVSSv2
CVE-2008-2801
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly implement JAR signing, which allows remote malicious users to execute arbitrary code via (1) injection of JavaScript into documents within a JAR archive or (2) a JAR archive that uses relative URLs to...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.8
Mozilla Firefox
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.8
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.3
Mozilla Seamonkey
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.6
7.5
CVSSv2
CVE-2008-2802
Mozilla Firefox prior to 2.0.0.15, Thunderbird 2.0.0.14 and previous versions, and SeaMonkey prior to 1.1.10 allow remote malicious users to execute arbitrary code via an XUL document that includes a script from a chrome: URI that points to a fastload file, related to this file...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.8
Mozilla Thunderbird 2.0.0.0
Mozilla Thunderbird 2.0.0.5
Mozilla Thunderbird 2.0.0.6
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0.0.8
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Thunderbird 2.0.0.2
Mozilla Thunderbird 2.0.0.3
Mozilla Thunderbird 2.0.0.4
Mozilla Thunderbird
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Seamonkey 1.1.2
7.5
CVSSv2
CVE-2008-0304
Heap-based buffer overflow in Mozilla Thunderbird prior to 2.0.0.12 and SeaMonkey prior to 1.1.8 might allow remote malicious users to execute arbitrary code via a crafted external-body MIME type in an e-mail message, related to an incorrect memory allocation during message previ...
Mozilla Seamonkey
Mozilla Thunderbird
7.5
CVSSv2
CVE-2007-4763
PHP remote file inclusion vulnerability in dbmodules/DB_adodb.class.php in PHP Object Framework (PHPOF) 20040226 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the PHPOF_INCLUDE_PATH parameter.
Tim Jackson Phpof
1 EDB exploit
6.8
CVSSv2
CVE-2020-36179
FasterXML jackson-databind 2.x prior to 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS.
Netapp Cloud Backup -
Netapp Service Level Manager -
Debian Debian Linux 9.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Application Testing Suite 13.3.0.1
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Agile Plm 9.3.6
Oracle Communications Policy Management 12.5.0
Oracle Primavera Unifier 19.12
Oracle Webcenter Portal 12.2.1.4.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Retail Merchandising System 15.0.3
Oracle Communications Evolved Communications Application Server 7.1
Oracle Goldengate Application Adapters 19.1.0.0.0
Oracle Data Integrator 12.2.1.4.0
Oracle Primavera Unifier 20.12
Oracle Banking Virtual Account Management 14.3.0
Oracle Insurance Rules Palette 11.0.2
Oracle Commerce Platform
1 Github repository
6.8
CVSSv2
CVE-2020-36180
FasterXML jackson-databind 2.x prior to 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS.
Netapp Cloud Backup -
Netapp Service Level Manager -
Debian Debian Linux 9.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Primavera Unifier 17.2
Oracle Application Testing Suite 13.3.0.1
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Agile Plm 9.3.6
Oracle Communications Policy Management 12.5.0
Oracle Primavera Unifier 19.12
Oracle Webcenter Portal 12.2.1.4.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Retail Merchandising System 15.0.3
Oracle Communications Evolved Communications Application Server 7.1
Oracle Goldengate Application Adapters 19.1.0.0.0
Oracle Data Integrator 12.2.1.4.0
Oracle Primavera Unifier 20.12
Oracle Banking Virtual Account Management 14.3.0
Oracle Insurance Rules Palette 11.0.2
1 Github repository
6.8
CVSSv2
CVE-2020-36182
FasterXML jackson-databind 2.x prior to 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS.
Fasterxml Jackson-databind
Netapp Cloud Backup -
Netapp Service Level Manager -
Debian Debian Linux 9.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Primavera Unifier 17.2
Oracle Application Testing Suite 13.3.0.1
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Agile Plm 9.3.6
Oracle Communications Policy Management 12.5.0
Oracle Primavera Unifier 19.12
Oracle Webcenter Portal 12.2.1.4.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Retail Merchandising System 15.0.3
Oracle Communications Evolved Communications Application Server 7.1
Oracle Goldengate Application Adapters 19.1.0.0.0
Oracle Data Integrator 12.2.1.4.0
Oracle Primavera Unifier 20.12
Oracle Banking Virtual Account Management 14.3.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »