CVE-2023-23598 - Exploiting Firefox's GTK wrapper code to read arbitrary files through DataTransfer.setData method
Recently, a critical vulnerability (CVE-2023-23598) has been discovered in the Firefox GTK wrapper code, which allows a website to read the contents of an arbitrary
CVE-2023-28164 - A Critical Vulnerability in Firefox and Thunderbird: Cross-Origin Iframe URL Dragging and Website Spoofing Attacks
A critical vulnerability, identified as CVE-2023-28164, has been discovered in Mozilla Firefox, Firefox ESR, and Thunderbird, which affects versions prior to Firefox 111, Firefox ESR
CVE-2023-25732: Exploring the Memory Writing Vulnerability in XPCOM Encoding Data
In this post, we're going to take an in-depth look into CVE-2023-25732, an out of bounds memory writing vulnerability in Mozilla's
CVE-2023-28163 - Firefox on Windows Save As Dialogue Vulnerability Exploits Filename Environment Variables
Introduction: The security vulnerability CVE-2023-28163 specifically targets Firefox on Windows, causing the web browser to incorrectly handle file downloads in certain situations. When a user
CVE-2023-25739: Firefox, Thunderbird, and Firefox ESR Use-After-Free Vulnerability in ScriptLoadContext Due to Unchecked Module Load Requests
A newly discovered vulnerability, identified under the code CVE-2023-25739, has been found in Firefox (versions prior to 110), Thunderbird (versions prior to 102.8), and
Episode
00:00:00
00:00:00