Lucene search
K

24 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

DubSite CMS 1.0 - CSRF Vulnerability

No description provided by source. Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS v1.0 Details ======= Tested on OS: Windows XP Tested with Software: Mozilla Firefox 3.5.x Vulnerable Products: DubSite CMS Affected...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2011/05/07 6:0 p.m.28 views

CVE-2011-0075

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...

10AI score0.05259EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2010/10/28 12:0 a.m.20 views

Mozilla Firefox 3.5.x < 3.5.15 Buffer Overflow Vulnerability

Binary data 801274.prm...

9.3CVSS7.3AI score0.83279EPSS
Exploits14References4
Exploit DB
Exploit DB
added 2010/09/20 12:0 a.m.46 views

Mozilla Firefox 3.5 - &#039;escape()&#039; Return Value Memory Corruption (Metasploit)

$Id: firefoxescaperetval.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS6.9AI score0.42689EPSS
Exploits9
NVD
NVD
added 2010/07/30 8:30 p.m.23 views

CVE-2010-2753

Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code via a large selection attribute in a XUL tree element, which triggers a use-after-fre...

9.3CVSS9.1AI score0.06672EPSS
Exploits1References7
NVD
NVD
added 2010/06/24 12:30 p.m.21 views

CVE-2010-0183

Use-after-free vulnerability in the nsCycleCollector::MarkRoots function in Mozilla Firefox 3.5.x before 3.5.10 and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a crafted HTML document, related to an improper frame construction process for menus...

9.3CVSS7.1AI score0.03952EPSS
Exploits0References13
Prion
Prion
added 2010/06/24 12:30 p.m.25 views

Design/Logic Flaw

Use-after-free vulnerability in the nsCycleCollector::MarkRoots function in Mozilla Firefox 3.5.x before 3.5.10 and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a crafted HTML document, related to an improper frame construction process for menus...

9.3CVSS7.8AI score0.03952EPSS
Exploits0References13Affected Software2
RedHat Linux
RedHat Linux
added 2010/06/22 9:57 p.m.7 views

Content-Disposition: attachment ignored if Content-Type: multipart also present

Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, does not properly handle situations in which both "Content-Disposition: attachment" and "Content-Type: multipart" are present in HTTP headers, which allows remote attackers to conduct cross-site scripting XSS...

4.3CVSS7.3AI score0.0207EPSS
Exploits0References4
seebug.org
seebug.org
added 2010/04/07 12:0 a.m.60 views

Firefox nsTreeSelection实现释放后使用漏洞

CVE ID: CVE-2010-0175 Firefox是一款流行的开源WEB浏览器。 Firefox处理nsTreeSelection元素的特殊事件时存在释放后使用漏洞。在执行select事件时,Firefox未经检查元素之前是否已被释放便进行了访问,这可能导致执行任意代码。 Mozilla Firefox 3.5.x Mozilla Firefox 3.0.x Mozilla Thunderbird 3.0.4 Mozilla SeaMonkey 2.0.4 临时解决方法: 禁用JavaScript。 厂商补丁: Debian ------...

9.3CVSS0.2AI score0.07054EPSS
Exploits1
Exploit DB
Exploit DB
added 2009/12/24 12:0 a.m.35 views

PBX Phone System 2.x - Multiple Vulnerabilities

PenTest Information: ==================== Global-Evolution Security Team remove discover multiple Vulnerabilities on PBX Phone System Application. An attacker can get sensitive customer/admin session-data over multiple Cross-Site-Scripting vulnerabilities. Details ======= Tested on OS: Windows 7...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/12/15 12:0 a.m.13 views

DubSite CMS 1.0 - Cross-Site Request Forgery

DubSite CMS 1.0 - Cross-Site Request Forgery Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS v1.0 Details ======= Tested on OS: Windows XP Tested with Software: Mozilla Firefox 3.5.x Vulnerable Products: DubSite CMS...

0.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2009/12/15 12:0 a.m.28 views

CVE-2009-3982

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

9.3CVSS7.5AI score0.03933EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2009/12/15 12:0 a.m.21 views

DubSite CMS 1.0 Cross Site Request Forgery

Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS v1.0 Details ======= Tested on OS: Windows XP Tested with Software: Mozilla Firefox 3.5.x Vulnerable Products: DubSite CMS Affected Versions: 1.0 Vulnerability Type:...

0.5AI score
Exploits0
0day.today
0day.today
added 2009/12/07 12:0 a.m.27 views

Barracuda IMFirewall 620 Vulnerability

Exploit for unknown platform in category web applications ====================================== Barracuda IMFirewall 620 Vulnerability ====================================== PenTest Information: ==================== GESEC Team remove discover multiple Input Validation Vulnerabilities on Barracud...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2009/10/29 12:0 a.m.34 views

CVE-2009-3377

Multiple unspecified vulnerabilities in liboggz before cf5feeaab69b05e24, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via unknown vectors...

10CVSS7.3AI score0.04571EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2009/07/24 12:0 a.m.33 views

Mozilla Firefox 3.5 Heap Spray OS X

!/usr/bin/env python FireFox 3.5 Heap Spray OS X Exploit Modified by: DrIDE Originally Discovered by: Simon Berry-Bryne Pythonized by: David Kennedy ReL1K @ SecureState Thanks to HDM Tested on OS X 10.5.7 from BaseHTTPServer import HTTPServer from BaseHTTPServer import BaseHTTPRequestHandler impo...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2009/07/24 12:0 a.m.37 views

Mozilla Firefox 3.5 (OSX) - Font Tags Remote Buffer Overflow

Mozilla Firefox 3.5 OSX - Font Tags Remote Buffer Overflow !/usr/bin/env python FireFox 3.5 Heap Spray OS X Exploit Modified by: DrIDE Originally Discovered by: Simon Berry-Bryne Pythonized by: David Kennedy ReL1K @ SecureState Thanks to HDM Tested on OS X 10.5.7 from BaseHTTPServer import...

0.7AI score
Exploits0
0day.today
0day.today
added 2009/07/20 12:0 a.m.33 views

Mozilla Firefox 3.5 (Font tags) Remote Heap Spray Exploit (pl)

Exploit for windows platform in category remote exploits ============================================================== Mozilla Firefox 3.5 Font tags Remote Heap Spray Exploit pl ============================================================== FireFox 3.5 Heap Spray Discovered by: Simon Berry-Bryne...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2009/07/16 3:30 p.m.23 views

CVE-2009-2478

Mozilla Firefox 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via unspecified vectors, related to a "flash bug."...

5CVSS5.9AI score0.07807EPSS
Exploits1References1
NVD
NVD
added 2009/07/16 3:30 p.m.14 views

CVE-2009-2478

Mozilla Firefox 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via unspecified vectors, related to a "flash bug."...

5CVSS6.5AI score0.07807EPSS
Exploits1References3
Rows per page
Query Builder