|
289841
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD requ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1692
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289842
|
- |
|
mozilla
|
firefox
|
The Profiler implementation in Mozilla Firefox before 22.0 parses untrusted data during UI rendering, which allows user-assisted remote attackers to execute arbitrary JavaScript code via a crafted we…
|
CWE-94
Code Injection
|
CVE-2013-1688
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289843
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) implementations in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x befor…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1687
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289844
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the mozilla::ResetDir function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allows…
|
CWE-399
Resource Management Errors
|
CVE-2013-1686
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289845
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the nsIDocument::GetRootElement function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.…
|
CWE-399
Resource Management Errors
|
CVE-2013-1685
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289846
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the mozilla::dom::HTMLMediaElement::LookupMediaElementURITable function in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and …
|
CWE-399
Resource Management Errors
|
CVE-2013-1684
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289847
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 22.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
NVD-CWE-noinfo
|
CVE-2013-1683
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289848
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 allow remo…
|
NVD-CWE-noinfo
|
CVE-2013-1682
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289849
|
- |
|
jordan_de_laune
|
mp3_player
|
Cross-site scripting (XSS) vulnerability in the MP3 Player module for Drupal 6.x allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the file name of…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1971
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289850
|
- |
|
yoran_brault
|
filebrowser
|
Cross-site scripting (XSS) vulnerability in the Filebrowser module 6.x-2.x before 6.x-2.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2036
|
2024-11-21 10:50 |
2013-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
