Mozilla » Thunderbird » 6.0.2 : Security Vulnerabilities, CVEs, Published In February 2012 (XSS)
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to inject arbitrary web script or HTML via a (1) web page or (2) Firefox extension, related to improper enforcement of XPConnect security restrictions for frame scripts that call untrusted objects.
Max CVSS
4.3
EPSS Score
0.22%
Published
2012-02-01
Updated
2017-09-19
1 vulnerabilities found