firefox is vulnerable to cross-site scripting attacks. Directory indexes for bundled resources are reflected in URL parameters, allowing an attacker to inject and execute malicious javascript.
bugzilla.mozilla.org/show_bug.cgi?id=1771774
secdb.alpinelinux.org/edge/community.yaml
secdb.alpinelinux.org/v3.16/community.yaml
www.mozilla.org/security/advisories/mfsa2022-28/
www.mozilla.org/security/advisories/mfsa2022-29/
www.mozilla.org/security/advisories/mfsa2022-30/
www.mozilla.org/security/advisories/mfsa2022-31/
www.mozilla.org/security/advisories/mfsa2022-32/