[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2010-1121":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":62,"aliases":63,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":76,"related":77,"reserved_at":9,"published_at":81,"modified_at":82,"state":83,"summary":84,"references_raw":93,"kevs":205,"epss":206,"epss_history":209,"metrics":461,"affected":464},"CVE-2010-1121","Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collection, as demonstrated by Nils during a Pwn2Own competition at CanSecWest 2010.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-94","Improper Control of Generation of Code ('Code Injection')","The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.","weakness","Draft","Base","Medium",[20,24,58],{"id":21,"name":22,"techniques":23},"CAPEC-242","Code Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[28,39,46],{"id":29,"name":30,"tactics":31,"countermeasures":38},"T1027.006","HTML Smuggling",[32,35],{"id":33,"name":34},"TA0030","Defense Evasion",{"id":36,"name":37},"TA0005","Stealth",[],{"id":40,"name":41,"tactics":42,"countermeasures":45},"T1027.009","Embedded Payloads",[43,44],{"id":33,"name":34},{"id":36,"name":37},[],{"id":47,"name":48,"tactics":49,"countermeasures":52},"T1564.009","Resource Forking",[50,51],{"id":33,"name":34},{"id":36,"name":37},[53],{"id":54,"name":55,"tactic":56},"D3-FFV","File Format Verification",{"name":57},"Isolate",{"id":59,"name":60,"techniques":61},"CAPEC-77","Manipulating User-Controlled Variables",[],[],[],[],[66,68,70,72,74],{"_key":67},"RHSA-2010:0500",{"_key":69},"RHSA-2010:0501",{"_key":71},"OPENSUSE-SU-2024:10071-1",{"_key":73},"OPENSUSE-SU-2024:10230-1",{"_key":75},"OPENSUSE-SU-2024:14572-1",[],[78,79,80],{"_key":71},{"_key":73},{"_key":75},"2010-03-25T20:31:00.000Z","2024-08-07T01:14:06.180Z","Modified",{"cisa_kev":85,"cisa_ransomware":85,"cisa_vendor":9,"epss_severity":86,"epss_score":87,"severity":88,"severity_score":89,"severity_version":90,"severity_source":91,"severity_vector":92,"severity_status":83},false,"low",0.0465,"high",10,"v2.0","nvd","AV:N/AC:L/Au:N/C:C/I:C/A:C",[94,102,107,112,119,124,129,134,138,142,146,150,155,160,164,169,173,177,181,185,189,193,197,201],{"url":95,"sources":96,"tags":98},"http://secunia.com/advisories/40481",[97,91],"cve.org",[99,100,101],"Third Party Advisory","X Refsource SECUNIA","Vendor Advisory",{"url":103,"sources":104,"tags":105},"http://ubuntu.com/usn/usn-930-1",[97,91],[101,106],"X Refsource UBUNTU",{"url":108,"sources":109,"tags":110},"http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html",[97,91],[101,111],"X Refsource FEDORA",{"url":113,"sources":114,"tags":115},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10924",[97,91],[116,117,118],"VDB Entry","Signature","X Refsource OVAL",{"url":120,"sources":121,"tags":122},"http://www.vupen.com/english/advisories/2010/1640",[97,91],[116,123,101],"X Refsource VUPEN",{"url":125,"sources":126,"tags":127},"http://www.redhat.com/support/errata/RHSA-2010-0501.html",[97,91],[101,128],"X Refsource REDHAT",{"url":130,"sources":131,"tags":132},"http://dvlabs.tippingpoint.com/blog/2010/02/15/pwn2own-2010",[97,91],[133],"X Refsource MISC",{"url":135,"sources":136,"tags":137},"http://www.vupen.com/english/advisories/2010/1557",[97,91],[116,123,101],{"url":139,"sources":140,"tags":141},"http://www.vupen.com/english/advisories/2010/1773",[97,91],[116,123,101],{"url":143,"sources":144,"tags":145},"http://www.vupen.com/english/advisories/2010/1592",[97,91],[116,123],{"url":147,"sources":148,"tags":149},"http://www.ubuntu.com/usn/usn-930-2",[97,91],[101,106],{"url":151,"sources":152,"tags":153},"http://www.securitytracker.com/id?1023817",[97,91],[116,154],"X Refsource SECTRACK",{"url":156,"sources":157,"tags":158},"https://bugzilla.mozilla.org/show_bug.cgi?id=555109",[97,91],[159],"X Refsource CONFIRM",{"url":161,"sources":162,"tags":163},"http://www.redhat.com/support/errata/RHSA-2010-0500.html",[97,91],[101,128],{"url":165,"sources":166,"tags":167},"http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html",[97,91],[101,168],"X Refsource SUSE",{"url":170,"sources":171,"tags":172},"http://news.cnet.com/8301-27080_3-20001126-245.html",[97,91],[133],{"url":174,"sources":175,"tags":176},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6844",[97,91],[116,117,118],{"url":178,"sources":179,"tags":180},"http://secunia.com/advisories/40323",[97,91],[99,100,101],{"url":182,"sources":183,"tags":184},"http://twitter.com/thezdi/statuses/11005277222",[97,91],[133],{"url":186,"sources":187,"tags":188},"http://secunia.com/advisories/40401",[97,91],[99,100,101],{"url":190,"sources":191,"tags":192},"http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html",[97,91],[101,111],{"url":194,"sources":195,"tags":196},"http://www.mozilla.org/security/announce/2010/mfsa2010-25.html",[97,91],[159,101],{"url":198,"sources":199,"tags":200},"http://secunia.com/advisories/40326",[97,91],[99,100,101],{"url":202,"sources":203,"tags":204},"http://support.avaya.com/css/P8/documents/100091069",[97,91],[159],[],{"date":207,"score":87,"percentile":208},"2026-06-04",0.89483,[210,214,217,220,223,226,229,231,233,236,239,242,244,247,250,253,256,259,262,265,268,271,274,277,279,282,285,288,291,294,297,300,303,305,308,311,313,316,319,322,325,327,330,333,336,339,341,344,347,350,353,356,359,361,364,366,369,372,375,378,381,383,385,388,391,394,397,400,403,405,408,410,412,415,418,421,423,426,428,430,433,436,439,442,445,448,451,453,456,458],{"date":211,"score":212,"percentile":213},"2025-11-04",0.05544,0.89822,{"date":215,"score":212,"percentile":216},"2025-11-05",0.8982,{"date":218,"score":212,"percentile":219},"2025-11-06",0.89818,{"date":221,"score":212,"percentile":222},"2025-11-07",0.89823,{"date":224,"score":212,"percentile":225},"2025-11-08",0.89826,{"date":227,"score":212,"percentile":228},"2025-11-09",0.89825,{"date":230,"score":212,"percentile":222},"2025-11-10",{"date":232,"score":212,"percentile":213},"2025-11-11",{"date":234,"score":212,"percentile":235},"2025-11-12",0.8983,{"date":237,"score":212,"percentile":238},"2025-11-13",0.89833,{"date":240,"score":212,"percentile":241},"2025-11-14",0.89836,{"date":243,"score":212,"percentile":238},"2025-11-15",{"date":245,"score":212,"percentile":246},"2025-11-16",0.89835,{"date":248,"score":212,"percentile":249},"2025-11-17",0.89832,{"date":251,"score":212,"percentile":252},"2025-11-18",0.89302,{"date":254,"score":212,"percentile":255},"2025-11-19",0.89307,{"date":257,"score":212,"percentile":258},"2025-11-20",0.89309,{"date":260,"score":212,"percentile":261},"2025-11-21",0.89846,{"date":263,"score":212,"percentile":264},"2025-11-22",0.89848,{"date":266,"score":212,"percentile":267},"2025-11-23",0.89844,{"date":269,"score":212,"percentile":270},"2025-11-24",0.89847,{"date":272,"score":212,"percentile":273},"2025-11-25",0.89853,{"date":275,"score":212,"percentile":276},"2025-11-26",0.89854,{"date":278,"score":212,"percentile":276},"2025-11-27",{"date":280,"score":212,"percentile":281},"2025-11-28",0.89845,{"date":283,"score":212,"percentile":284},"2025-11-29",0.89906,{"date":286,"score":212,"percentile":287},"2025-11-30",0.89907,{"date":289,"score":212,"percentile":290},"2025-12-01",0.89966,{"date":292,"score":212,"percentile":293},"2025-12-02",0.8997,{"date":295,"score":212,"percentile":296},"2025-12-03",0.89971,{"date":298,"score":212,"percentile":299},"2025-12-04",0.89912,{"date":301,"score":212,"percentile":302},"2025-12-05",0.89913,{"date":304,"score":212,"percentile":299},"2025-12-06",{"date":306,"score":212,"percentile":307},"2025-12-07",0.89908,{"date":309,"score":212,"percentile":310},"2025-12-08",0.89909,{"date":312,"score":212,"percentile":299},"2025-12-09",{"date":314,"score":212,"percentile":315},"2025-12-10",0.89923,{"date":317,"score":212,"percentile":318},"2025-12-11",0.89926,{"date":320,"score":212,"percentile":321},"2025-12-12",0.89931,{"date":323,"score":212,"percentile":324},"2025-12-13",0.89935,{"date":326,"score":212,"percentile":324},"2025-12-14",{"date":328,"score":212,"percentile":329},"2025-12-15",0.89936,{"date":331,"score":212,"percentile":332},"2025-12-16",0.8993,{"date":334,"score":212,"percentile":335},"2025-12-17",0.89937,{"date":337,"score":212,"percentile":338},"2025-12-18",0.89943,{"date":340,"score":212,"percentile":338},"2025-12-19",{"date":342,"score":212,"percentile":343},"2025-12-20",0.89942,{"date":345,"score":212,"percentile":346},"2025-12-21",0.8995,{"date":348,"score":212,"percentile":349},"2025-12-22",0.89952,{"date":351,"score":212,"percentile":352},"2025-12-23",0.89955,{"date":354,"score":212,"percentile":355},"2025-12-24",0.8996,{"date":357,"score":212,"percentile":358},"2025-12-25",0.89973,{"date":360,"score":212,"percentile":296},"2025-12-26",{"date":362,"score":212,"percentile":363},"2025-12-27",0.9002,{"date":365,"score":212,"percentile":290},"2025-12-28",{"date":367,"score":212,"percentile":368},"2025-12-29",0.89963,{"date":370,"score":212,"percentile":371},"2025-12-30",0.89969,{"date":373,"score":212,"percentile":374},"2025-12-31",0.89977,{"date":376,"score":212,"percentile":377},"2026-01-01",0.90046,{"date":379,"score":212,"percentile":380},"2026-01-02",0.9004,{"date":382,"score":212,"percentile":380},"2026-01-03",{"date":384,"score":212,"percentile":374},"2026-01-04",{"date":386,"score":212,"percentile":387},"2026-01-05",0.89974,{"date":389,"score":212,"percentile":390},"2026-01-06",0.89975,{"date":392,"score":212,"percentile":393},"2026-01-07",0.89978,{"date":395,"score":212,"percentile":396},"2026-01-08",0.89981,{"date":398,"score":212,"percentile":399},"2026-01-09",0.89982,{"date":401,"score":212,"percentile":402},"2026-01-10",0.89983,{"date":404,"score":212,"percentile":387},"2026-01-11",{"date":406,"score":212,"percentile":407},"2026-01-12",0.89972,{"date":409,"score":212,"percentile":371},"2026-01-13",{"date":411,"score":212,"percentile":402},"2026-01-14",{"date":413,"score":212,"percentile":414},"2026-01-15",0.89988,{"date":416,"score":212,"percentile":417},"2026-01-16",0.89991,{"date":419,"score":212,"percentile":420},"2026-01-17",0.89989,{"date":422,"score":212,"percentile":414},"2026-01-18",{"date":424,"score":212,"percentile":425},"2026-01-19",0.89987,{"date":427,"score":212,"percentile":414},"2026-01-20",{"date":429,"score":212,"percentile":417},"2026-01-21",{"date":431,"score":212,"percentile":432},"2026-01-22",0.89995,{"date":434,"score":212,"percentile":435},"2026-01-23",0.90003,{"date":437,"score":212,"percentile":438},"2026-01-24",0.90009,{"date":440,"score":212,"percentile":441},"2026-01-25",0.90008,{"date":443,"score":212,"percentile":444},"2026-01-26",0.9001,{"date":446,"score":212,"percentile":447},"2026-01-27",0.90013,{"date":449,"score":212,"percentile":450},"2026-01-28",0.90019,{"date":452,"score":212,"percentile":450},"2026-01-29",{"date":454,"score":212,"percentile":455},"2026-01-30",0.90018,{"date":457,"score":212,"percentile":450},"2026-01-31",{"date":459,"score":212,"percentile":460},"2026-02-01",0.90086,[462],{"source":91,"cvss_v2_0":463,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":89,"baseSeverity":9,"vectorString":92,"impactScore":89,"exploitabilityScore":89},[465],{"ecosystem":9,"name":466,"vendor":467,"product":466,"cpe_part":468,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":469},"firefox","mozilla","a",[470,473,475],{"version":471,"is_range":85,"range_type":472,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6","cpe",{"version":474,"is_range":85,"range_type":472,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6.1",{"version":476,"is_range":85,"range_type":472,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6.2"]