WebExtensions Request Redirection Vulnerability in Firefox < 60

WebExtensions Request Redirection Vulnerability in Firefox < 60

CVE-2018-5166 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

WebExtensions can use request redirection and a "filterReponseData" filter to bypass host permission settings to redirect network traffic and access content from a host for which they do not have explicit user permission. This vulnerability affects Firefox < 60.

Learn more about our Network Penetration Testing.