Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Leaving pointerlock by pressing the escape key could be prevented
Vulnerability Description
It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay customValidity notifications from a `<select>` element over certain permission prompts. This could be used to confuse a user into giving a site unintended permissions. This vulnerability affects Firefox < 128 and Thunderbird < 128.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox 安全漏洞
Vulnerability Description
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 127 版本存在安全漏洞,该漏洞源于可以防止用户在按下 Esc 键时退出 pointerlock,并将 select 元素中的自定义有效性通知覆盖在某些权限提示上。这可以用来迷惑用户,使其向网站授予非预期的权限。
CVSS Information
N/A
Vulnerability Type
N/A