Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yosuke hasegawa vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2011-3655
Mozilla Firefox 4.x up to and including 7.0 and Thunderbird 5.0 up to and including 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote malicious users to gain privileges via a crafted web site.
Mozilla Firefox 4.0.1
Mozilla Firefox 4.0
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.2
Mozilla Firefox 6.0.1
Mozilla Firefox 7.0
Mozilla Thunderbird 5.0
Mozilla Thunderbird 6.0
Mozilla Thunderbird 6.0.1
Mozilla Thunderbird 6.0.2
Mozilla Thunderbird 7.0
10
CVSSv2
CVE-2011-3652
The browser engine in Mozilla Firefox prior to 8.0 and Thunderbird prior to 8.0 does not properly allocate memory, which allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors...
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.7
Mozilla Firefox 3.0
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.15
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.5
Mozilla Firefox 1.4.1
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.7
10
CVSSv2
CVE-2011-3651
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 7.0 and Thunderbird 7.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 7.0
Mozilla Thunderbird 7.0
10
CVSSv2
CVE-2011-3654
The browser engine in Mozilla Firefox prior to 8.0 and Thunderbird prior to 8.0 does not properly handle links from SVG mpath elements to non-SVG elements, which allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execu...
Mozilla Firefox 3.6
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.11
Mozilla Firefox 3.5.7
Mozilla Firefox 3.5
Mozilla Firefox 3.0
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0.16
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.5
4.3
CVSSv2
CVE-2011-3648
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 3.6.24 and 4.x up to and including 7.0 and Thunderbird prior to 3.1.6 and 5.0 up to and including 7.0 allows remote malicious users to inject arbitrary web script or HTML via crafted text with Shift JIS encoding...
Mozilla Firefox 3.6
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.19
Mozilla Firefox 3.5.14
Mozilla Firefox 3.5.12
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.5
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.17
Mozilla Firefox 3.0.4
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.5.13
Mozilla Firefox 3.5.9
9.3
CVSSv2
CVE-2011-3650
Mozilla Firefox prior to 3.6.24 and 4.x up to and including 7.0 and Thunderbird prior to 3.1.6 and 5.0 up to and including 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remote malicious users to cause a denial of service (memo...
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.17
Mozilla Firefox 3.5.10
Mozilla Firefox 3.5.15
Mozilla Firefox 3.5.4
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.14
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.22
Mozilla Firefox
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.11
Mozilla Firefox 3.5.8
Mozilla Firefox 3.5
Mozilla Firefox 3.0.14
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.12
Mozilla Firefox 3.0.15
4.3
CVSSv2
CVE-2008-1241
GUI overlay vulnerability in Mozilla Firefox prior to 2.0.0.13 and SeaMonkey prior to 1.1.9 allows remote malicious users to spoof form elements and redirect user inputs via a borderless XUL pop-up window from a background tab.
Mozilla Seamonkey
Mozilla Firefox
9.3
CVSSv2
CVE-2008-1195
Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and previous versions and 5.0 Update 14 and previous versions; and SDK and JRE 1.4.2_16 and previous versions; allows remote malicious users to access arbitrary network services on the local host v...
Sun Jdk 1.5.0
Sun Jdk 1.6.0
Sun Jre 1.4.2 5
Sun Jre 1.4.2 7
Sun Jre 1.4.2 14
Sun Jre 1.4.2 16
Sun Jre 1.5.0
Sun Jre 1.6.0
Sun Jre 1.4.2
Sun Jre 1.4.2 1
Sun Jre 1.4.2 2
Sun Jre 1.4.2 3
Sun Jre 1.4.2 9
Sun Jre 1.4.2 10
Sun Jre 1.4.2 11
Sun Jre 1.4.2 12
Sun Jre 1.4.2 4
Sun Jre 1.4.2 6
Sun Jre 1.4.2 8
Sun Jre 1.4.2 13
Sun Jre 1.4.2 15
Sun Sdk 1.4.2 10
5
CVSSv2
CVE-2007-4879
Mozilla Firefox before Firefox 2.0.0.13, and SeaMonkey prior to 1.1.9, can automatically install TLS client certificates with minimal user interaction, and automatically sends these certificates when requested, which makes it easier for remote web sites to track user activities a...
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.6
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.4
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.8
Mozilla Firefox 1.5.7
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox
Mozilla Firefox 0.10
Mozilla Firefox 0.6.1
Mozilla Firefox 0.7
Mozilla Firefox 1.0
Mozilla Firefox 1.0.3
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.0.6
5
CVSSv2
CVE-2008-1238
Mozilla Firefox prior to 2.0.0.13 and SeaMonkey prior to 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote malicious users to bypass application prote...
Mozilla Firefox
Mozilla Seamonkey
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »