Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
Docs
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
christian holler vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-22752
Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerabilit...
Mozilla Firefox
7.5
CVSSv2
CVE-2011-3661
YARR, as used in Mozilla Firefox 4.x up to and including 8.0, Thunderbird 5.0 up to and including 8.0, and SeaMonkey prior to 2.6, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via crafted JavaScript.
Mozilla Firefox 4.0
Mozilla Firefox 4.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Firefox 7.0.1
Mozilla Firefox 8.0
Mozilla Seamonkey
Mozilla Seamonkey 1.0
4.3
CVSSv2
CVE-2014-1560
Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 allow remote malicious users to cause a denial of service (X.509 certificate parsing outage) via a crafted certificate that does not use ASCII character encoding in a required context.
Mozilla Firefox
Mozilla Thunderbird
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.6
4.3
CVSSv2
CVE-2011-3663
Mozilla Firefox 4.x up to and including 8.0, Thunderbird 5.0 up to and including 8.0, and SeaMonkey prior to 2.6 allow remote malicious users to capture keystrokes entered on a web page, even when JavaScript is disabled, by using SVG animation accessKey events within that web pag...
Mozilla Firefox 4.0
Mozilla Firefox 4.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Firefox 7.0.1
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0
Mozilla Thunderbird 6.0.1
7.5
CVSSv2
CVE-2011-3665
Mozilla Firefox 4.x up to and including 8.0, Thunderbird 5.0 up to and including 8.0, and SeaMonkey prior to 2.6 allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via an Ogg VIDEO element that is not properly h...
Mozilla Firefox 4.0
Mozilla Firefox 4.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Firefox 7.0.1
Mozilla Firefox 8.0
Mozilla Seamonkey
Mozilla Seamonkey 1.0
10
CVSSv2
CVE-2012-3983
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 16.0, Thunderbird prior to 16.0, and SeaMonkey prior to 2.13 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary co...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
4.3
CVSSv2
CVE-2012-3985
Mozilla Firefox prior to 16.0, Thunderbird prior to 16.0, and SeaMonkey prior to 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote malicious users to conduct cross-site scripting (XSS) attacks by leveraging initial-origin access after document.domai...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
10
CVSSv2
CVE-2014-1550
Use-after-free vulnerability in the MediaInputPort class in Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption) by leveraging incorrect Web Audio control-message ...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.6
5.8
CVSSv2
CVE-2014-1552
Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 do not properly implement the sandbox attribute of the IFRAME element, which allows remote malicious users to bypass intended restrictions on same-origin content via a crafted web site in conjunction with a redirect.
Mozilla Firefox
Mozilla Thunderbird
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.6
4.3
CVSSv2
CVE-2014-1558
Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 allow remote malicious users to cause a denial of service (X.509 certificate parsing outage) via a crafted certificate that does not use UTF-8 character encoding in a required context, a different vulnerability than CVE-...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Thunderbird 24.0
Mozilla Thunderbird 24.0.1
Mozilla Thunderbird 24.1
Mozilla Thunderbird 24.1.1
Mozilla Thunderbird 24.2
Mozilla Thunderbird 24.3
Mozilla Thunderbird 24.4
Mozilla Thunderbird 24.5
Mozilla Thunderbird 24.6
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-3248
thanhtungtnt
remote code execution
codepen embed block
CVE-2025-6354
chris coyier
CVE-2025-50025
nitin yawalkar
code execution
CVE-2025-50038
CVE-2023-0386
cross-site scripting
CVE-2025-6351
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »