Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla firefox 20.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-1683
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 22.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0
Mozilla Firefox
NA
CVE-2013-1688
The Profiler implementation in Mozilla Firefox prior to 22.0 parses untrusted data during UI rendering, which allows user-assisted remote malicious users to execute arbitrary JavaScript code via a crafted web site.
Mozilla Firefox
Mozilla Firefox 19.0
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
NA
CVE-2013-1695
Mozilla Firefox prior to 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote malicious users to bypass intended access restrictions via a FRAME element within an IFRAME element.
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0
NA
CVE-2013-1699
The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox prior to 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote malicious users to spoof the address bar via unspecified homograph characters.
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
NA
CVE-2013-1690
Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote malicious users to cause a denial of ser...
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 19.0
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.5
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird Esr 17.0.5
Mozilla Thunderbird Esr 17.0.6
1 EDB exploit
NA
CVE-2013-1692
Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD request, which makes it easier for remote malicious users to conduct cross-si...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.5
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0.6
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.4
NA
CVE-2013-1693
The SVG filter implementation in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 allows remote malicious users to read pixel values, and possibly bypass the Same Origin Policy and read text fro...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.4
Mozilla Firefox Esr 17.0.5
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.1
NA
CVE-2013-1697
The XrayWrapper implementation in Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7 does not properly restrict use of DefaultValue for method calls, which allows remote malicious users to execute...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 20.0.1
Mozilla Firefox
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox Esr 17.0.2
Mozilla Firefox Esr 17.0.1
Mozilla Firefox Esr 17.0
Mozilla Firefox Esr 17.0.5
Mozilla Firefox Esr 17.0.6
Mozilla Firefox Esr 17.0.3
Mozilla Firefox Esr 17.0.4
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.1
NA
CVE-2013-1698
The getUserMedia permission implementation in Mozilla Firefox prior to 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote malicious users to trick users into permitting camera or microphone access via a crafted ...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox
NA
CVE-2013-1696
Mozilla Firefox prior to 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote malicious users to conduct clickjacking attacks via a crafted web site that uses the HTTP server push feature with multipart responses.
Mozilla Firefox 19.0.1
Mozilla Firefox 19.0.2
Mozilla Firefox 20.0
Mozilla Firefox 20.0.1
Mozilla Firefox 19.0
Mozilla Firefox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »