Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
paul taylor vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5506
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allows remote malicious users to bypass the same origin policy by causing the browser to issue an XMLHttpRequest to an attacker-controlled resource t...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2008-5508
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 does not properly parse URLs with leading whitespace or control characters, which might allow remote malicious users to misrepresent URLs and simplif...
Mozilla Thunderbird
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 5.0
Debian Debian Linux 4.0
NA
CVE-2008-0017
The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 does not check for an allocation failure, which allows remote malicious users to cause a denial of service (crash) and possibl...
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2008-5014
jslock.cpp in Mozilla Firefox 3.x prior to 3.0.2, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__p...
Mozilla Seamonkey
Mozilla Firefox
Mozilla Thunderbird
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.10
NA
CVE-2008-5017
Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to cause a denial of service (crash) via unknow...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 6.06
NA
CVE-2008-5018
The JavaScript engine in Mozilla Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to cause a denial of service (crash) via vectors related to "insufficient class chec...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
NA
CVE-2008-5012
Mozilla Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote malicious users to bypass the same origin policy and access...
Mozilla Seamonkey 1.1.10
Mozilla Thunderbird 1.5.0.7
Mozilla Firefox 0.9 Rc
Mozilla Thunderbird 0.6
Mozilla Seamonkey 1.0.3
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Thunderbird 0.7.2
Mozilla Firefox 1.5
Mozilla Thunderbird 2.0.0.4
Mozilla Seamonkey 1.1.8
Mozilla Firefox 1.5.2
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.0.6
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.8
Mozilla Seamonkey 1.0.9
Mozilla Thunderbird 0.3
Mozilla Seamonkey 1.1.3
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.10
NA
CVE-2008-5013
Mozilla Firefox 2.x prior to 2.0.0.18 and SeaMonkey 1.x prior to 1.1.13 do not properly check when the Flash module has been dynamically unloaded properly, which allows remote malicious users to execute arbitrary code via a crafted SWF file that "dynamically unloads itself f...
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.6
Mozilla Firefox 1.5.0.5
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.3
Mozilla Firefox 2.0.0.12
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Firefox 0.9
Mozilla Firefox 1.5
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.2
Mozilla Firefox 1.8
Mozilla Firefox 1.5.8
Mozilla Firefox 2.0.0.15
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.9
NA
CVE-2008-5022
The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to bypass the same-origin policy and execute arbitrary script via mul...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Debian Debian Linux 4.0
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
NA
CVE-2008-5023
Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS property in a signed JAR file.
Mozilla Firefox
Mozilla Seamonkey
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »