Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
safari vulnerabilities and exploits
(subscribe to this query)
935
VMScore
CVE-2007-3186
Apple Safari Beta 3.0.1 for Windows allows remote malicious users to execute arbitrary commands via shell metacharacters in a URI in the SRC of an IFRAME, as demonstrated using a gopher URI.
Apple Safari 3.0
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 2.0.4
Apple Safari
Apple Safari 2.0
1 EDB exploit
890
VMScore
CVE-2015-5780
The Safari Extensions implementation in Apple Safari prior to 9 does not require user confirmation before replacing an installed extension, which has unspecified impact and attack vectors.
Apple Safari
890
VMScore
CVE-2014-1300
Unspecified vulnerability in Apple Safari 7.0.2 on OS X allows remote malicious users to execute arbitrary code with root privileges via unknown vectors, as demonstrated by Google during a Pwn4Fun competition at CanSecWest 2014.
Apple Safari 7.0.2
1 Github repository
1 Article
890
VMScore
CVE-2011-3046
The extension subsystem in Google Chrome prior to 17.0.963.78 does not properly handle history navigation, which allows remote malicious users to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
Google Chrome
Opensuse Opensuse 12.1
Apple Safari
Apple Iphone Os
890
VMScore
CVE-2011-1290
Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246, in Google Chrome prior to 10.0.648.133, and in Apple Safari prior to 5.0.5, allows remote malicious users to execute arbitrary code via unknown vectors related to CS...
Rim Blackberry Torch 9800 Firmware 6.0.0.246
Apple Webkit
Rim Blackberry Torch 9800
890
VMScore
CVE-2010-3116
Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari prior to 4.1.3 and 5.0.x prior to 5.0.3, Google Chrome prior to 5.0.375.127, and webkitgtk prior to 1.2.6, allow remote malicious users to execute arbitrary code or cause a denial of service (application c...
Google Chrome
Apple Safari
Apple Iphone Os
Webkitgtk Webkitgtk
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
890
VMScore
CVE-2010-1120
Unspecified vulnerability in Safari 4 on Apple Mac OS X 10.6 allows remote malicious users to execute arbitrary code via unknown vectors, as demonstrated by Charlie Miller during a Pwn2Own competition at CanSecWest 2010.
Apple Safari 4.0
890
VMScore
CVE-2009-2468
Integer overflow in Apple CoreGraphics, as used in Safari prior to 4.0.3, Mozilla Firefox prior to 3.0.12, and Mac OS X 10.4.11 and 10.5.8, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long text run that t...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 3.0.1
Mozilla Firefox 2.0
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.8
Mozilla Firefox 2.0.0.21
Mozilla Firefox 2.0.0.15
Mozilla Firefox 0.6.1
Mozilla Firefox 0.6
Mozilla Firefox 0.1
Mozilla Firefox 3.0.9
Mozilla Firefox 2.0.0.7
Mozilla Firefox 1.5.0.12
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.6
Mozilla Firefox 2.0.0.2
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.6
890
VMScore
CVE-2009-0137
Multiple unspecified vulnerabilities in Safari RSS in Apple Mac OS X 10.4.11 and 10.5.6, and Windows XP and Vista, allow remote malicious users to execute arbitrary JavaScript in the local security zone via a crafted feed: URL, related to "input validation issues."
Apple Safari
890
VMScore
CVE-2004-0539
The "Show in Finder" button in the Safari web browser in Mac OS X 10.3.4 and 10.2.8 may execute downloaded applications, which could allow remote malicious users to execute arbitrary code.
Apple Mac Os X Server 10.3.4
Apple Mac Os X 10.3.4
Apple Mac Os X Server 10.2.8
Apple Mac Os X 10.2.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »