Computer Security
[EN] securityvulns.ru no-pyccku


Mozilla CSS crossite scripting
Published:29.01.2006
Source:
SecurityVulns ID:5710
Type:client
Threat Level:
5/10
Description:-moz-binding: CSS allows to bind XBL with element and XBL may contains scripts. It may lead to crossite sripting within e.g. webmail.
Affected:MOZILLA : Firefox 1.0
 NETSCAPE : Netscape 8.1
Original documentdocumentNikolas Coukouma, [Full-disclosure] -moz-binding CSS property: more XSS fun (29.01.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod