[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-1960":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":45,"duplicate_of":9,"upstream":46,"downstream":47,"duplicates":84,"related":85,"reserved_at":9,"published_at":96,"modified_at":97,"state":98,"summary":99,"references_raw":107,"kevs":222,"epss":223,"epss_history":226,"metrics":436,"affected":447},"CVE-2016-1960","Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],[19,34],{"_key":20,"name":21,"source":22,"url":23,"maturity":24,"reliability_score":25,"verified":26,"type":27,"platforms":28,"requires_auth":9,"exploitdb":30,"metasploit":9},"44294","Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution","exploit-database","https://www.exploit-db.com/exploits/44294","weaponized",0.8,true,"remote",[29],"windows",{"verified":26,"type":27,"platform":29,"file":31,"codes":32},"exploits/windows/remote/44294.html",[33,7],"CVE-2017-5375",{"_key":35,"name":36,"source":22,"url":37,"maturity":38,"reliability_score":39,"verified":40,"type":27,"platforms":41,"requires_auth":9,"exploitdb":42,"metasploit":9},"42484","Mozilla Firefox \u003C 45.0 - 'nsHtml5TreeBuilder' Use-After-Free (EMET 5.52 Bypass)","https://www.exploit-db.com/exploits/42484","poc",0.5,false,[29],{"verified":40,"type":27,"platform":29,"file":43,"codes":44},"exploits/windows/remote/42484.html",[7],[],[],[48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82],{"_key":49},"RHSA-2016:0373",{"_key":51},"RHSA-2016:0460",{"_key":53},"OPENSUSE-SU-2024:10071-1",{"_key":55},"SUSE-SU-2016:0727-1",{"_key":57},"SUSE-SU-2016:0777-1",{"_key":59},"SUSE-SU-2016:0909-1",{"_key":61},"OPENSUSE-SU-2016:1769-1",{"_key":63},"OPENSUSE-SU-2016:1778-1",{"_key":65},"OPENSUSE-SU-2024:10230-1",{"_key":67},"OPENSUSE-SU-2024:14572-1",{"_key":69},"DSA-3510-1",{"_key":71},"DSA-3520-1",{"_key":73},"MGASA-2016-0105",{"_key":75},"MGASA-2016-0115",{"_key":77},"UBUNTU-CVE-2016-1960",{"_key":79},"USN-2917-1",{"_key":81},"USN-2934-1",{"_key":83},"DEBIAN-CVE-2016-1960",[],[86,87,88,89,90,91,92,93,94,95],{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":73},{"_key":75},"2016-03-13T18:00:00.000Z","2024-08-05T23:10:40.462Z","Modified",{"cisa_kev":40,"cisa_ransomware":40,"cisa_vendor":9,"epss_severity":100,"epss_score":101,"severity":102,"severity_score":103,"severity_version":104,"severity_source":105,"severity_vector":106,"severity_status":98},"critical",0.86455,"high",8.8,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[108,116,121,126,130,134,138,142,146,150,154,159,164,168,174,179,183,187,191,197,201,206,210,214,218],{"url":109,"sources":110,"tags":112},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00091.html",[111,105],"cve.org",[113,114,115],"Vendor Advisory","X Refsource SUSE","Third Party Advisory",{"url":117,"sources":118,"tags":119},"http://www.mozilla.org/security/announce/2016/mfsa2016-23.html",[111,105],[120,113],"X Refsource CONFIRM",{"url":122,"sources":123,"tags":124},"https://bugzilla.mozilla.org/show_bug.cgi?id=1246014",[111,105],[120,125],"Issue Tracking",{"url":127,"sources":128,"tags":129},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00068.html",[111,105],[113,114],{"url":131,"sources":132,"tags":133},"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00006.html",[111,105],[113,114,115],{"url":135,"sources":136,"tags":137},"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html",[111,105],[120,115],{"url":139,"sources":140,"tags":141},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00029.html",[111,105],[113,114],{"url":143,"sources":144,"tags":145},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00027.html",[111,105],[113,114],{"url":147,"sources":148,"tags":149},"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00008.html",[111,105],[113,114,115],{"url":151,"sources":152,"tags":153},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00089.html",[111,105],[113,114],{"url":155,"sources":156,"tags":157},"http://www.ubuntu.com/usn/USN-2917-1",[111,105],[113,158],"X Refsource UBUNTU",{"url":160,"sources":161,"tags":162},"http://www.debian.org/security/2016/dsa-3520",[111,105],[113,163],"X Refsource DEBIAN",{"url":165,"sources":166,"tags":167},"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00007.html",[111,105],[113,114,115],{"url":169,"sources":170,"tags":171},"https://www.exploit-db.com/exploits/44294/",[111,105],[172,173],"Exploit","X Refsource EXPLOIT DB",{"url":175,"sources":176,"tags":177},"http://zerodayinitiative.com/advisories/ZDI-16-198/",[111,105],[178,115],"X Refsource MISC",{"url":180,"sources":181,"tags":182},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00093.html",[111,105],[113,114],{"url":184,"sources":185,"tags":186},"http://www.debian.org/security/2016/dsa-3510",[111,105],[113,163],{"url":188,"sources":189,"tags":190},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00031.html",[111,105],[113,114],{"url":192,"sources":193,"tags":194},"http://www.securitytracker.com/id/1035215",[111,105],[195,196],"VDB Entry","X Refsource SECTRACK",{"url":198,"sources":199,"tags":200},"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00050.html",[111,105],[113,114],{"url":202,"sources":203,"tags":204},"https://security.gentoo.org/glsa/201605-06",[111,105],[113,205],"X Refsource GENTOO",{"url":207,"sources":208,"tags":209},"http://www.ubuntu.com/usn/USN-2934-1",[111,105],[113,158],{"url":211,"sources":212,"tags":213},"https://www.exploit-db.com/exploits/42484/",[111,105],[172,173],{"url":215,"sources":216,"tags":217},"http://www.ubuntu.com/usn/USN-2917-2",[111,105],[113,158],{"url":219,"sources":220,"tags":221},"http://www.ubuntu.com/usn/USN-2917-3",[111,105],[113,158],[],{"date":224,"score":101,"percentile":225},"2026-06-04",0.99427,[227,231,233,235,237,240,242,244,246,248,250,252,254,256,259,262,264,266,268,270,273,275,277,280,282,284,287,289,292,294,297,299,301,303,305,307,309,312,314,316,319,321,323,325,327,330,332,334,337,339,341,343,345,347,350,353,355,357,359,362,364,367,370,372,374,376,378,381,383,385,387,390,392,395,397,399,401,405,408,410,412,415,418,420,422,425,427,429,431,434],{"date":228,"score":229,"percentile":230},"2025-11-04",0.87699,0.99429,{"date":232,"score":229,"percentile":230},"2025-11-05",{"date":234,"score":229,"percentile":230},"2025-11-06",{"date":236,"score":229,"percentile":230},"2025-11-07",{"date":238,"score":229,"percentile":239},"2025-11-08",0.99428,{"date":241,"score":229,"percentile":239},"2025-11-09",{"date":243,"score":229,"percentile":239},"2025-11-10",{"date":245,"score":229,"percentile":239},"2025-11-11",{"date":247,"score":229,"percentile":230},"2025-11-12",{"date":249,"score":229,"percentile":230},"2025-11-13",{"date":251,"score":229,"percentile":230},"2025-11-14",{"date":253,"score":229,"percentile":230},"2025-11-15",{"date":255,"score":229,"percentile":230},"2025-11-16",{"date":257,"score":229,"percentile":258},"2025-11-17",0.9943,{"date":260,"score":229,"percentile":261},"2025-11-18",0.99559,{"date":263,"score":229,"percentile":261},"2025-11-19",{"date":265,"score":229,"percentile":261},"2025-11-20",{"date":267,"score":229,"percentile":258},"2025-11-21",{"date":269,"score":229,"percentile":258},"2025-11-22",{"date":271,"score":229,"percentile":272},"2025-11-23",0.99431,{"date":274,"score":229,"percentile":272},"2025-11-24",{"date":276,"score":229,"percentile":272},"2025-11-25",{"date":278,"score":229,"percentile":279},"2025-11-26",0.99432,{"date":281,"score":229,"percentile":279},"2025-11-27",{"date":283,"score":229,"percentile":279},"2025-11-28",{"date":285,"score":229,"percentile":286},"2025-11-29",0.99433,{"date":288,"score":229,"percentile":286},"2025-11-30",{"date":290,"score":229,"percentile":291},"2025-12-01",0.99445,{"date":293,"score":229,"percentile":291},"2025-12-02",{"date":295,"score":229,"percentile":296},"2025-12-03",0.99444,{"date":298,"score":229,"percentile":258},"2025-12-04",{"date":300,"score":229,"percentile":258},"2025-12-05",{"date":302,"score":229,"percentile":258},"2025-12-06",{"date":304,"score":229,"percentile":272},"2025-12-07",{"date":306,"score":229,"percentile":286},"2025-12-08",{"date":308,"score":229,"percentile":286},"2025-12-09",{"date":310,"score":229,"percentile":311},"2025-12-10",0.99435,{"date":313,"score":229,"percentile":311},"2025-12-11",{"date":315,"score":229,"percentile":311},"2025-12-12",{"date":317,"score":229,"percentile":318},"2025-12-13",0.99434,{"date":320,"score":229,"percentile":286},"2025-12-14",{"date":322,"score":229,"percentile":286},"2025-12-15",{"date":324,"score":229,"percentile":318},"2025-12-16",{"date":326,"score":229,"percentile":311},"2025-12-17",{"date":328,"score":229,"percentile":329},"2025-12-18",0.99437,{"date":331,"score":229,"percentile":329},"2025-12-19",{"date":333,"score":229,"percentile":329},"2025-12-20",{"date":335,"score":229,"percentile":336},"2025-12-21",0.99438,{"date":338,"score":229,"percentile":329},"2025-12-22",{"date":340,"score":229,"percentile":329},"2025-12-23",{"date":342,"score":229,"percentile":336},"2025-12-24",{"date":344,"score":229,"percentile":336},"2025-12-25",{"date":346,"score":229,"percentile":329},"2025-12-26",{"date":348,"score":229,"percentile":349},"2025-12-27",0.9944,{"date":351,"score":229,"percentile":352},"2025-12-28",0.99436,{"date":354,"score":229,"percentile":352},"2025-12-29",{"date":356,"score":229,"percentile":352},"2025-12-30",{"date":358,"score":229,"percentile":329},"2025-12-31",{"date":360,"score":229,"percentile":361},"2026-01-01",0.9945,{"date":363,"score":229,"percentile":361},"2026-01-02",{"date":365,"score":229,"percentile":366},"2026-01-03",0.99451,{"date":368,"score":229,"percentile":369},"2026-01-04",0.99439,{"date":371,"score":229,"percentile":369},"2026-01-05",{"date":373,"score":229,"percentile":369},"2026-01-06",{"date":375,"score":229,"percentile":369},"2026-01-07",{"date":377,"score":229,"percentile":369},"2026-01-08",{"date":379,"score":229,"percentile":380},"2026-01-09",0.99441,{"date":382,"score":229,"percentile":380},"2026-01-10",{"date":384,"score":229,"percentile":380},"2026-01-11",{"date":386,"score":229,"percentile":380},"2026-01-12",{"date":388,"score":229,"percentile":389},"2026-01-13",0.99442,{"date":391,"score":229,"percentile":389},"2026-01-14",{"date":393,"score":229,"percentile":394},"2026-01-15",0.99443,{"date":396,"score":229,"percentile":394},"2026-01-16",{"date":398,"score":229,"percentile":296},"2026-01-17",{"date":400,"score":229,"percentile":296},"2026-01-18",{"date":402,"score":403,"percentile":404},"2026-01-19",0.87057,0.99416,{"date":406,"score":403,"percentile":407},"2026-01-20",0.99417,{"date":409,"score":403,"percentile":404},"2026-01-21",{"date":411,"score":403,"percentile":404},"2026-01-22",{"date":413,"score":403,"percentile":414},"2026-01-23",0.9942,{"date":416,"score":403,"percentile":417},"2026-01-24",0.99419,{"date":419,"score":403,"percentile":414},"2026-01-25",{"date":421,"score":403,"percentile":414},"2026-01-26",{"date":423,"score":403,"percentile":424},"2026-01-27",0.99422,{"date":426,"score":403,"percentile":424},"2026-01-28",{"date":428,"score":403,"percentile":424},"2026-01-29",{"date":430,"score":403,"percentile":424},"2026-01-30",{"date":432,"score":403,"percentile":433},"2026-01-31",0.99423,{"date":435,"score":403,"percentile":318},"2026-02-01",[437],{"source":105,"cvss_v2_0":438,"cvss_v3_0":443,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":439,"baseSeverity":9,"vectorString":440,"impactScore":441,"exploitabilityScore":442},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":103,"baseSeverity":444,"vectorString":106,"impactScore":445,"exploitabilityScore":446},"HIGH",9.8,7.2,[448,484,490,497,503,513],{"ecosystem":9,"name":449,"vendor":450,"product":449,"cpe_part":451,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":452},"firefox","mozilla","a",[453,458,460,462,464,466,468,470,472,474,476,478,480,482],{"version":454,"is_range":26,"range_type":455,"version_start":9,"version_start_type":9,"version_end":456,"version_end_type":457,"fixed_in":9},"lte44.0.2","cpe","44.0.2","including",{"version":459,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.0",{"version":461,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.0.1",{"version":463,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.0.5",{"version":465,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.1.0",{"version":467,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.1.1",{"version":469,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.2.0",{"version":471,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.2.1",{"version":473,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.3.0",{"version":475,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.4.0",{"version":477,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.5.0",{"version":479,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.5.1",{"version":481,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.6.0",{"version":483,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.6.1",{"ecosystem":9,"name":485,"vendor":450,"product":486,"cpe_part":451,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":487},"Thunderbird","thunderbird",[488],{"version":489,"is_range":26,"range_type":455,"version_start":9,"version_start_type":9,"version_end":481,"version_end_type":457,"fixed_in":9},"lte38.6.0",{"ecosystem":9,"name":491,"vendor":492,"product":491,"cpe_part":493,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":494},"leap","opensuse","o",[495],{"version":496,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"42.1",{"ecosystem":9,"name":492,"vendor":492,"product":492,"cpe_part":493,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":498},[499,501],{"version":500,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.1",{"version":502,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.2",{"ecosystem":9,"name":504,"vendor":505,"product":504,"cpe_part":493,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":506},"linux","oracle",[507,509,511],{"version":508,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0",{"version":510,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6",{"version":512,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7",{"ecosystem":9,"name":514,"vendor":515,"product":516,"cpe_part":493,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":517},"linux enterprise","suse","linux_enterprise",[518],{"version":519,"is_range":40,"range_type":455,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.0"]