mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
776 B
776 B
CVE-2009-3370
Description
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
POC
Reference
- https://bugzilla.mozilla.org/show_bug.cgi?id=511615
- https://bugzilla.mozilla.org/show_bug.cgi?id=511615
Github
No PoCs found on GitHub currently.