firefox is vulnerable to information disclosure. When a Web Extension contains the all-urls
permission and performed a fetch request with mode set to same-origin
, an attacker will be able to read local files.
CPE | Name | Operator | Version |
---|---|---|---|
firefox:eoan | eq | 69.0.3+build1 | |
firefox:xenial | eq | 45.0.2+build1 | |
firefox:bionic | eq | 59.0.2+build1 | |
firefox:edge | eq | 73.0.1-r1 |