Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When an extension with the proxy permission registered to receive <all_urls>, the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have inadvertently leaked their IP address. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox 安全漏洞
Vulnerability Description
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 存在安全漏洞,当一个分机用代理权限注册接收时,代理没有为视图源url的onRequest回调进行分流。虽然web内容不能导航到这样的url,但打开视图源的用户可能无意中泄露了他们的IP地址。以下产品和版本受到影响:Firefox < 84、Thunderbird < 78.6和Firefox ESR< 78.6。
CVSS Information
N/A
Vulnerability Type
N/A