mozilla

3,621 tracked vulnerabilities.

CVE-2011-2978
Bugzilla Multiple Versions - Unauthenticated Email Address Change
Aug 09, 2011
EPSS 0.02
CVE-2011-2977
Bugzilla 3.6.x < 3.6.6, 3.7.x, 4.0.x < 4.0.2, 4.1.x < 4.1.3 - Information Disclosure via Undeleted Temporary Files
Aug 09, 2011
EPSS 0.00
CVE-2011-2976
Bugzilla 2.16rc1-2.22.7, 3.0.x-3.3.x, and 3.4.x < 3.4.12 - Cross-Site Scripting via BUGLIST Cookie
Aug 09, 2011
EPSS 0.01
CVE-2011-2381
Bugzilla CRLF Injection via Attachment Description
Aug 09, 2011
EPSS 0.02
CVE-2011-2380
Bugzilla Multiple Versions - Private Group Name Exposure via Bug Creation or Editing
Aug 09, 2011
EPSS 0.02
CVE-2011-2379
Bugzilla Multiple Versions - Cross-Site Scripting via Raw Unified Patch
Aug 09, 2011
EPSS 0.02
CVE-2011-2605
Firefox < 3.6.18 and 4.x through 4.0.1 - CRLF Injection via Cookie String Handling
Jun 30, 2011
EPSS 0.01
CVE-2011-2377
SeaMonkey through 2.0.14 - Remote Code Execution via Multipart/x-mixed-replace Image
Jun 30, 2011
EPSS 0.04
CVE-2011-2376
Firefox < 3.6.18 - Remote Code Execution or Denial of Service via Browser Engine
Jun 30, 2011
EPSS 0.04
CVE-2011-2375
Firefox < 5.0 - Remote Code Execution or Denial of Service
Jun 30, 2011
EPSS 0.06
CVE-2011-2374
Firefox < 3.6.18 and 4.x <= 4.0.1 - Remote Code Execution
Jun 30, 2011
EPSS 0.05
CVE-2011-2373
SeaMonkey through 2.0.14 - Use-After-Free via Crafted XUL Document
Jun 30, 2011
EPSS 0.05
CVE-2011-2371
SeaMonkey through 2.0.14 - Remote Code Execution via Array.reduceRight Integer Overflow
Jun 30, 2011
EPSS 0.76
CVE-2011-2370
Firefox < 5.0 - Unauthenticated Add-on Installation via xpinstall Whitelist Bypass
Jun 30, 2011
EPSS 0.01
CVE-2011-2369
Firefox 4.0-4.0.1 - Cross-Site Scripting via SVG HTML-Encoded Entity
Jun 30, 2011
EPSS 0.01
CVE-2011-2368
Firefox 4.x-4.0.1 - Remote Code Execution via WebGL Write Operations
Jun 30, 2011
EPSS 0.04
CVE-2011-2367
Firefox 4.x-4.0.1 - Information Disclosure and Denial of Service via WebGL Read Operations
Jun 30, 2011
EPSS 0.02
CVE-2011-2365
Thunderbird < 3.1.11 - Remote Code Execution or Denial of Service
Jun 30, 2011
EPSS 0.06
CVE-2011-2364
Thunderbird < 3.1.11 - Remote Code Execution or Denial of Service
Jun 30, 2011
EPSS 0.05
CVE-2011-2363
SeaMonkey through 2.0.14 - Use-After-Free in SVG Element List Append
Jun 30, 2011
EPSS 0.06
CVE-2011-2362
SeaMonkey through 2.0.14 - Same Origin Policy Bypass via Trailing Dot Cookie Domain
Jun 30, 2011
EPSS 0.02
CVE-2011-0085
SeaMonkey through 2.0.14 - Remote Code Execution via XUL Document Command Updater
Jun 30, 2011
EPSS 0.06
CVE-2011-0083
SeaMonkey through 2.0.14 - Use-After-Free in SVG Element List Implementation
Jun 30, 2011
EPSS 0.06
CVE-2011-2598
Firefox 4.x - Unauthorized Sensitive Information Exposure via WebGL and SVG Filter
Jun 30, 2011
EPSS 0.01
CVE-2011-2366
Mozilla Gecko < 5.0 - Unauthenticated Approximate Image Copy via WebGL Texture Timing Attack
Jun 30, 2011
EPSS 0.01