Security Advisory

CVE-2022-22755

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-22 00:00:00

Last updated 2025-04-16 14:41:52

Assigner mozilla

State PUBLISHED

Description

By using XSL Transforms, a malicious webserver could have served a user an XSL document that would continue to execute JavaScript (within the bounds of the same-origin policy) even after the tab was closed. This vulnerability affects Firefox < 97.

← Browse all CVEs View on cve.org ↗