mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
772 B
772 B
CVE-2016-1955
Description
Mozilla Firefox before 45.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information by reading a Content Security Policy (CSP) violation report that contains path information associated with an IFRAME element.
POC
Reference
- https://bugzilla.mozilla.org/show_bug.cgi?id=1208946
- https://bugzilla.mozilla.org/show_bug.cgi?id=1208946
Github
No PoCs found on GitHub currently.