CVE-2015-2744

Cross-site scripting (XSS) vulnerability in the Search app in Gaia in Mozilla Firefox OS before 2.2 allows remote attackers to inject arbitrary HTML via a crafted search link that is mishandled after re-opening the browser or opening the tab view.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:o:mozilla:firefox_os:*:*:*:*:*:*:*:*

Information

Published : 2015-08-07 17:59

Updated : 2015-08-10 05:51


NVD link : CVE-2015-2744

Mitre link : CVE-2015-2744


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

mozilla

  • firefox_os