Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tom vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2706
Firefox prior to 1.0.7 and Mozilla before Suite 1.7.12 allows remote malicious users to execute Javascript with chrome privileges via an about: page such as about:mozilla.
Mozilla Firefox 1.0.2
Mozilla Firefox
Mozilla Mozilla Suite
Mozilla Mozilla Suite 1.7.10
Mozilla Firefox 1.0.4
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.3
Mozilla Mozilla Suite 1.7.7
Mozilla Mozilla Suite 1.7.6
Mozilla Firefox 1.0.5
NA
CVE-2005-2707
Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 allows remote malicious users to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks.
Mozilla Firefox 1.0.2
Mozilla Firefox
Mozilla Mozilla Suite
Mozilla Mozilla Suite 1.7.10
Mozilla Firefox 1.0.4
Mozilla Mozilla Suite 1.7.8
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.3
Mozilla Mozilla Suite 1.7.7
Mozilla Mozilla Suite 1.7.6
Mozilla Firefox 1.0.5
NA
CVE-2005-2968
Firefox 1.0.6 and Mozilla 1.7.10 allows malicious users to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.
Mozilla Mozilla 1.7.10
Mozilla Firefox 1.0.6
1 EDB exploit
NA
CVE-2007-3738
Multiple unspecified vulnerabilities in Mozilla Firefox prior to 2.0.0.5 allow remote malicious users to execute arbitrary code via a crafted XPCNativeWrapper.
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.1
NA
CVE-2007-5338
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 allow remote malicious users to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.
Mozilla Seamonkey
Mozilla Firefox
6.5
CVSSv3
CVE-2021-21221
Insufficient validation of untrusted input in Mojo in Google Chrome before 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
8.8
CVSSv3
CVE-2021-21224
Type confusion in V8 in Google Chrome before 90.0.4430.85 allowed a remote malicious user to execute arbitrary code inside a sandbox via a crafted HTML page.
Google Chrome
Debian Debian Linux 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
1 Github repository
1 Article
6.5
CVSSv3
CVE-2022-3437
A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory w...
Samba Samba
Fedoraproject Fedora 36
Fedoraproject Fedora 37
8.8
CVSSv3
CVE-2020-12410
Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thun...
Mozilla Firefox
Mozilla Firefox Esr
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
1 Article
NA
CVE-2008-4066
Mozilla Firefox 2.0.0.14, and other versions prior to 2.0.0.17, allows remote malicious users to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via HTML-escaped low surrogate characters that are ignored by the HTML parser, as demonstrated by a &qu...
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
log injection
CVE-2024-37079
type confusion
CVE-2024-32943
CVE-2024-30103
CVE-2024-37350
arbitrary code
CVE-2024-6189
CVE-2024-6225
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »