Privilege Escalation and XSS Vulnerability in Mozilla Firefox WebExtension APIs

CVE-2015-7223 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:N

The WebExtension APIs in Mozilla Firefox before 43.0 allow remote attackers to gain privileges, and possibly obtain sensitive information or conduct cross-site scripting (XSS) attacks, via a crafted web site.

Learn more about our Web App Pen Testing.