Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-23959 - log back

CVE-2021-23959 edited at 26 Jan 2021 14:21:37

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Cross-site scripting

Description

+	A security issue was found in Firefox before version 85.0. A cross-site scripting (XSS) bug in the internal error pages could have led to various spoofing attacks, including other error pages and the address bar.
+
+	Note: This issue only affected Firefox for Android. Other operating systems are unaffected.

References

+	https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/#CVE-2021-23959
+	https://bugzilla.mozilla.org/show_bug.cgi?id=1659035

Notes

CVE-2021-23959 created at 26 Jan 2021 14:13:53