Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla mozilla 1.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2012-2714
The BrowserID (Mozilla Persona) module 7.x-1.x prior to 7.x-1.3 for Drupal allows remote malicious users to hijack the authentication of arbitrary users via the audience identifier.
Browserid Project Browserid 7.x-1.0
Browserid Project Browserid 7.x-1.1
Browserid Project Browserid 7.x-1.2
8.8
CVSSv3
CVE-2021-30117
The API call /InstallTab/exportFldr.asp is vulnerable to a semi-authenticated boolean-based blind SQL injection in the parameter fldrId. Detailed description --- Given the following request: ``` GET /InstallTab/exportFldr.asp?fldrId=1’ HTTP/1.1 Host: 192.168.1.194 User-Agen...
Kaseya Vsa
7.8
CVSSv3
CVE-2023-34040
In Spring for Apache Kafka 3.0.9 and previous versions and versions 2.9.10 and previous versions, a possible deserialization attack vector existed, but only if unusual configuration was applied. An attacker would have to construct a malicious serialized object in one of the deser...
Vmware Spring For Apache Kafka
3 Github repositories
7.5
CVSSv3
CVE-2017-7805
During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. This leav...
Mozilla Firefox 56.0
Mozilla Firefox Esr 52.4.0
Mozilla Thunderbird 52.4.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
NA
CVE-2024-3552
CVE-2024-3552-Poc CVE-2024-3552 Web Directory Free <= 1.6.9 - Unauthenticated SQL Injection Description The Web Directory Free plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 1.6.9 due to insufficient escaping on a user supplied pa...
1 Github repository
NA
CVE-2024-4956
Path-Traversal-Scanner This is a bulk scanner for detecting Path Traversal vulnerabilities based on my previous work CVE-2024-4956 Bulk Scanner. This scanner scans a list of URLs for path traversal vulnerabilities. It has built-in user agents and rotates between targets to avoid ...
4 Github repositories
NA
CVE-2014-2018
Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x up to and including 17.0.8, Thunderbird ESR 17.x up to and including 17.0.10, and SeaMonkey prior to 2.20 allows user-assisted remote malicious users to inject arbitrary web script or HTML via an e-mail message ...
Mozilla Thunderbird Esr 17.0.1
Mozilla Thunderbird Esr 17.0.2
Mozilla Thunderbird Esr 17.0.3
Mozilla Thunderbird Esr 17.0.4
Mozilla Thunderbird Esr 17.0.5
Mozilla Thunderbird Esr 17.0.10
Mozilla Thunderbird Esr 17.0.8
Mozilla Thunderbird Esr 17.0
Mozilla Thunderbird Esr 17.0.6
Mozilla Thunderbird Esr 17.0.7
Mozilla Thunderbird 17.0
Mozilla Thunderbird 17.0.1
Mozilla Thunderbird 17.0.2
Mozilla Thunderbird 17.0.3
Mozilla Thunderbird 17.0.4
Mozilla Thunderbird 17.0.7
Mozilla Thunderbird 17.0.8
Mozilla Thunderbird 17.0.5
Mozilla Thunderbird 17.0.6
Mozilla Seamonkey
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.5
NA
CVE-2013-0751
Mozilla Firefox prior to 18.0 on Android and SeaMonkey prior to 2.15 do not restrict a touch event to a single IFRAME element, which allows remote malicious users to obtain sensitive information or possibly conduct cross-site scripting (XSS) attacks via a crafted HTML document.
Mozilla Firefox 3.6.25
Mozilla Firefox 3.6.24
Mozilla Firefox 6.0.2
Mozilla Firefox 3.5.7
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 4.0
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.5
Mozilla Firefox 3.6.22
Mozilla Firefox 3.6.2
Mozilla Firefox 3.5.1
Mozilla Firefox 3.6.9
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5
Mozilla Firefox 0.10.1
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.5
Mozilla Firefox 1.0.8
Mozilla Firefox 2.0.0.11
NA
CVE-2012-1948
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x up to and including 13.0, Firefox ESR 10.x prior to 10.0.6, Thunderbird 5.0 up to and including 13.0, Thunderbird ESR 10.x prior to 10.0.6, and SeaMonkey prior to 2.11 allow remote malicious users t...
Mozilla Firefox 4.0.1
Mozilla Firefox 4.0
Mozilla Firefox 6.0
Mozilla Firefox 6.0.2
Mozilla Firefox 9.0
Mozilla Firefox 11.0
Mozilla Firefox 6.0.1
Mozilla Firefox 7.0.1
Mozilla Firefox 12.0
Mozilla Firefox 7.0
Mozilla Firefox 8.0
Mozilla Firefox 13.0
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 8.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox Esr 10.0.4
Mozilla Firefox Esr 10.0
Mozilla Firefox Esr 10.0.5
Mozilla Firefox Esr 10.0.1
Mozilla Firefox Esr 10.0.2
Mozilla Firefox Esr 10.0.3
NA
CVE-2012-1949
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x up to and including 13.0, Thunderbird 5.0 up to and including 13.0, and SeaMonkey prior to 2.11 allow remote malicious users to cause a denial of service (memory corruption and application crash) or...
Mozilla Firefox 4.0
Mozilla Firefox 6.0.1
Mozilla Firefox 7.0.1
Mozilla Firefox 12.0
Mozilla Firefox 7.0
Mozilla Firefox 8.0
Mozilla Firefox 13.0
Mozilla Firefox 5.0
Mozilla Firefox 8.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox 4.0.1
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.2
Mozilla Firefox 9.0
Mozilla Firefox 11.0
Mozilla Thunderbird 7.0.1
Mozilla Thunderbird 7.0
Mozilla Thunderbird 10.0.4
Mozilla Thunderbird 11.0
Mozilla Thunderbird 8.0
Mozilla Thunderbird 9.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »