Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
galeon vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0752
The Plugin Finder Service (PFS) in Firefox prior to 1.0.3 allows remote malicious users to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag.
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 0.10
Mozilla Firefox 1.0
NA
CVE-2006-2776
Certain privileged UI code in Mozilla Firefox and Thunderbird prior to 1.5.0.4 calls content-defined setters on an object prototype, which allows remote malicious users to execute code at a higher privilege than intended.
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.4
Mozilla Thunderbird 0.8
Mozilla Thunderbird 0.9
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 1.0.7
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 0.5
Mozilla Thunderbird 0.6
Mozilla Thunderbird 1.0
NA
CVE-2006-2777
Unspecified vulnerability in Mozilla Firefox prior to 1.5.0.4 and SeaMonkey prior to 1.0.2 allows remote malicious users to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are execu...
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.5
Mozilla Seamonkey 1.0
Mozilla Firefox 0.10
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 1.5.0.1
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2006-2778
The crypto.signText function in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow.
Mozilla Thunderbird
Mozilla Firefox
NA
CVE-2006-2780
Integer overflow in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Mozilla Firefox
Mozilla Thunderbird
NA
CVE-2006-2783
Mozilla Firefox and Thunderbird prior to 1.5.0.4 strip the Unicode Byte-order-Mark (BOM) from a UTF-8 page before the page is passed to the parser, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via a BOM sequence in the middle of a dangerous ta...
Mozilla Firefox
Mozilla Thunderbird
NA
CVE-2006-2784
The PLUGINSPAGE functionality in Mozilla Firefox prior to 1.5.0.4 allows remote user-assisted malicious users to execute privileged code by tricking a user into installing missing plugins and selecting the "Manual Install" button, then using nested javascript: URLs. NOT...
Mozilla Firefox
NA
CVE-2006-2786
HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird prior to 1.5.0.4, when used with certain proxy servers, allows remote malicious users to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP r...
Mozilla Thunderbird
Mozilla Firefox
NA
CVE-2006-2775
Mozilla Firefox and Thunderbird prior to 1.5.0.4 associates XUL attributes with the wrong URL under certain unspecified circumstances, which might allow remote malicious users to bypass restrictions by causing a persisted string to be associated with the wrong URL.
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Firefox 1.5
Mozilla Thunderbird 0.1
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.0.5
Mozilla Thunderbird
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.2
Mozilla Thunderbird 0.7
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.3
Mozilla Thunderbird 1.5
Mozilla Firefox
NA
CVE-2006-2787
EvalInSandbox in Mozilla Firefox and Thunderbird prior to 1.5.0.4 allows remote malicious users to gain privileges via javascript that calls the valueOf method on objects that were created outside of the sandbox.
Mozilla Firefox 1.0
Mozilla Firefox 1.0.7
Mozilla Firefox 1.5
Mozilla Thunderbird 1.0.2
Mozilla Thunderbird 1.0.3
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.2
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.0.5
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Thunderbird 1.0
Mozilla Thunderbird 1.0.1
Mozilla Thunderbird 1.0.7
Mozilla Thunderbird 1.5
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox Preview Release
Mozilla Thunderbird 1.0.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »