Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, allows remote attackers to hijack the authentication of arbitrary users for requests that were initiated by a plugin and received a 307 redirect to a page on a different web site.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox和SeaMonkey跨站请求伪造漏洞
Vulnerability Description
Firefox是一款非常流行的开源WEB浏览器。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。 Mozilla Firefox 3.5.17之前版本,3.6.14之前的3.6.x版本,以及SeaMonkey 2.0.12之前版本中存在跨站请求伪造漏洞。远程攻击者可以劫持任意用户请求通过插件建立,并把307重定向到不同web站点页面的认证。
CVSS Information
N/A
Vulnerability Type
N/A