CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3810

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.136

EPSS Ranking 94.0%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2006-3810

Mozilla » Firefox » Version: 1.5

cpe:2.3:a:mozilla:firefox:1.5
Mozilla » Firefox » Version: 1.5.0.1

cpe:2.3:a:mozilla:firefox:1.5.0.1
Mozilla » Firefox » Version: 1.5.0.2

cpe:2.3:a:mozilla:firefox:1.5.0.2
Mozilla » Firefox » Version: 1.5.0.3

cpe:2.3:a:mozilla:firefox:1.5.0.3
Mozilla » Firefox » Version: 1.5.0.4

cpe:2.3:a:mozilla:firefox:1.5.0.4
Mozilla » Seamonkey » Version: 1.0

cpe:2.3:a:mozilla:seamonkey:1.0
Mozilla » Seamonkey » Version: 1.0.1

cpe:2.3:a:mozilla:seamonkey:1.0.1
Mozilla » Seamonkey » Version: 1.0.2

cpe:2.3:a:mozilla:seamonkey:1.0.2
Mozilla » Thunderbird » Version: 1.5

cpe:2.3:a:mozilla:thunderbird:1.5
Mozilla » Thunderbird » Version: 1.5.0.2

cpe:2.3:a:mozilla:thunderbird:1.5.0.2
Mozilla » Thunderbird » Version: 1.5.0.4

cpe:2.3:a:mozilla:thunderbird:1.5.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3810

Products

Pricing

Contact Us