Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On pages containing an iframe, the "data:" protocol can be used to create a modal dialog through Javascript that will have an arbitrary domains as the dialog's location, spoofing of the origin of the modal dialog from the user view. Note: This attack only affects installations with e10 multiprocess turned off. Installations with e10s turned on do not support the modal dialog functionality. This vulnerability affects Firefox < 56.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox installation 安全漏洞
Vulnerability Description
Mozilla Firefox是美国Mozilla基金会开发的一款开源Web浏览器。installation是其中的一个安装配置程序。 Mozilla Firefox 56之前的版本中的installation存在安全漏洞。当e10多线程关闭时,攻击者可利用该漏洞实施欺骗攻击。
CVSS Information
N/A
Vulnerability Type
N/A