Same Origin Policy Violation in Mozilla Firefox and SeaMonkey

Same Origin Policy Violation in Mozilla Firefox and SeaMonkey

CVE-2013-5612 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 makes it easier for remote attackers to inject arbitrary web script or HTML by leveraging a Same Origin Policy violation triggered by lack of a charset parameter in a Content-Type HTTP header.

Learn more about our Web App Pen Testing.