Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
epiphany vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2781
Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.
Mozilla Thunderbird
Mozilla Seamonkey
NA
CVE-2006-2782
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote malicious users to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2006-2785
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 1.5.0.4 allows user-assisted remote malicious users to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute contains a ...
Mozilla Firefox
NA
CVE-2005-0752
The Plugin Finder Service (PFS) in Firefox prior to 1.0.3 allows remote malicious users to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag.
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 0.10
Mozilla Firefox 1.0
NA
CVE-2006-1729
Mozilla Firefox 1.x prior to 1.5.0.2 and 1.0.x prior to 1.0.8, Mozilla Suite prior to 1.7.13, and SeaMonkey prior to 1.0.1 allows remote malicious users to read arbitrary files by (1) inserting the target filename into a text box, then turning that box into a file upload control,...
Mozilla Seamonkey
Mozilla Firefox
Mozilla Mozilla Suite
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
NA
CVE-2006-2775
Mozilla Firefox and Thunderbird prior to 1.5.0.4 associates XUL attributes with the wrong URL under certain unspecified circumstances, which might allow remote malicious users to bypass restrictions by causing a persisted string to be associated with the wrong URL.
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Firefox 1.5
Mozilla Thunderbird 0.1
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.0.5
Mozilla Thunderbird
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.2
Mozilla Thunderbird 0.7
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.3
Mozilla Thunderbird 1.5
Mozilla Firefox
NA
CVE-2006-2776
Certain privileged UI code in Mozilla Firefox and Thunderbird prior to 1.5.0.4 calls content-defined setters on an object prototype, which allows remote malicious users to execute code at a higher privilege than intended.
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.4
Mozilla Thunderbird 0.8
Mozilla Thunderbird 0.9
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 1.0.7
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 0.5
Mozilla Thunderbird 0.6
Mozilla Thunderbird 1.0
NA
CVE-2006-2777
Unspecified vulnerability in Mozilla Firefox prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are execu...
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Seamonkey 1.0
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5.0.1
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2006-2778
The crypto.signText function in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow.
Mozilla Thunderbird
Mozilla Firefox
NA
CVE-2006-2780
Integer overflow in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Mozilla Firefox
Mozilla Thunderbird
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »