Vulnerabilities > Mozilla > Seamonkey > 2.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-08-18 | CVE-2011-2984 | Code Injection vulnerability in Mozilla Firefox, Seamonkey and Thunderbird Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and possibly other products does not properly handle the dropping of a tab element, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by establishing a content area and registering for drop events. | 10.0 |
2011-08-18 | CVE-2011-2983 | Information Exposure vulnerability in Mozilla Firefox, Seamonkey and Thunderbird Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, SeaMonkey 1.x and 2.x, and possibly other products does not properly handle the RegExp.input property, which allows remote attackers to bypass the Same Origin Policy and read data from a different domain via a crafted web site, possibly related to a use-after-free. | 4.3 |
2011-08-18 | CVE-2011-2378 | Code Injection vulnerability in Mozilla Firefox, Seamonkey and Thunderbird The appendChild function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, SeaMonkey 2.x, and possibly other products does not properly handle DOM objects, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to dereferencing of a "dangling pointer." | 10.0 |
2011-03-11 | CVE-2011-1187 | Information Exposure vulnerability in Google Chrome Google Chrome before 10.0.648.127 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an "error message leak." | 5.0 |