admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2016/CVE-2016-9076.md

18 lines
779 B
Markdown
Raw Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2016-9076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9076)
![](https://img.shields.io/static/v1?label=Product&message=Firefox&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2050%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=select%20dropdown%20menu%20can%20be%20used%20for%20URL%20bar%20spoofing%20on%20e10s&color=brighgreen)
### Description
An issue where a "<select>" dropdown menu can be used to cover location bar content, resulting in potential spoofing attacks. This attack requires e10s to be enabled in order to function. This vulnerability affects Firefox < 50.
### POC
#### Reference
- http://www.securityfocus.com/bid/94337
#### Github
No PoCs found on GitHub currently.
Reference in New Issue Copy Permalink