Cross-Origin Content Access in Reader View Vulnerability

Cross-Origin Content Access in Reader View Vulnerability

CVE-2018-5119 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The reader view will display cross-origin content when CORS headers are set to prohibit the loading of cross-origin content by a site. This could allow access to content that should be restricted in reader view. This vulnerability affects Firefox < 58.

Learn more about our Web Application Penetration Testing UK.