Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng libpng vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-11693
The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are un...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Firefox Esr
9.8
CVSSv3
CVE-2019-9820
A use-after-free vulnerability can occur in the chrome event handler when it is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
Mozilla Firefox Esr
Mozilla Thunderbird
Mozilla Firefox
5.3
CVSSv3
CVE-2019-9817
Images from a different domain can be read using a canvas object in some circumstances. This could be used to steal image data from a different site in violation of same-origin policy. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
Mozilla Firefox
Mozilla Thunderbird
Mozilla Firefox Esr
9.8
CVSSv3
CVE-2019-9819
A vulnerability where a JavaScript compartment mismatch can occur while working with the fetch API, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.7, Firefox < 67, and Firefox ESR < 60.7.
Mozilla Thunderbird
Mozilla Firefox Esr
Mozilla Firefox
NA
CVE-2009-0771
The layout engine in Mozilla Firefox prior to 3.0.7, Thunderbird prior to 2.0.0.21, and SeaMonkey 1.1.15 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via certain vectors that trigger memory corruption and assertion failure...
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.0.3
Mozilla Firefox 2.0.0.12
Mozilla Thunderbird 2.0.0.4
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.1.7
Mozilla Thunderbird 2.0.0.6
Mozilla Seamonkey 1.0.6
Mozilla Firefox 1.5.0.6
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey
Mozilla Seamonkey 1.1.3
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.3
Mozilla Seamonkey 1.0
Mozilla Firefox 1.5.0.11
Mozilla Thunderbird 2.0.0.18
Mozilla Thunderbird 2.0.0.9
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.0.7
NA
CVE-2009-0773
The JavaScript engine in Mozilla Firefox prior to 3.0.7, Thunderbird prior to 2.0.0.21, and SeaMonkey 1.1.15 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) a splice of an array that contains "some non-set elemen...
Mozilla Firefox 3.0
Mozilla Firefox 3.0.1
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.3
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 2.0.0.9
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.3
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.1
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 2.0.0.5
Mozilla Firefox 2.0.0.17
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0
NA
CVE-2009-0775
Double free vulnerability in Mozilla Firefox prior to 3.0.7, Thunderbird prior to 2.0.0.21, and SeaMonkey prior to 1.1.15 allows remote malicious users to execute arbitrary code via "cloned XUL DOM elements which were linked as a parent and child," which are not properl...
Mozilla Firefox 3.0
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.4
Mozilla Thunderbird 2.0.0.14
Mozilla Thunderbird 2.0.0.12
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.1.8
Mozilla Firefox
Mozilla Firefox 1.0
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.5
Mozilla Firefox 2.0.0.20
Mozilla Thunderbird 2.0.0.18
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
NA
CVE-2009-0777
Mozilla Firefox prior to 3.0.7, Thunderbird prior to 2.0.0.21, and SeaMonkey prior to 1.1.15 decode invisible characters when they are displayed in the location bar, which causes an incorrect address to be displayed and makes it easier for remote malicious users to spoof URLs and...
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0.2
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.2
Mozilla Thunderbird 2.0.0.9
Mozilla Thunderbird 2.0.0.6
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.9
Mozilla Seamonkey 1.1.10
Mozilla Firefox 3.0
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.4
Mozilla Thunderbird 2.0.0.14
Mozilla Thunderbird 2.0.0.12
3.1
CVSSv3
CVE-2019-2766
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker wi...
Oracle Jdk 11.0.3
Oracle Jdk 12.0.1
Oracle Jre 11.0.3
Oracle Jre 12.0.1
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Mcafee Epolicy Orchestrator 5.9.0
Mcafee Epolicy Orchestrator 5.9.1
Mcafee Epolicy Orchestrator 5.10.0
Hp Xp7 Command View
Opensuse Leap 15.0
Opensuse Leap 15.1
5.3
CVSSv3
CVE-2019-11698
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event...
Mozilla Thunderbird
Mozilla Firefox
Mozilla Firefox Esr
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »