Security Advisory

CVE-2023-6210

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-21 14:28:54

Last updated 2025-02-13 17:26:12

Assigner mozilla

State PUBLISHED

Description

When an https: web page created a pop-up from a "javascript:" URL, that pop-up was incorrectly allowed to load blockable content such as iframes from insecure http: URLs This vulnerability affects Firefox < 120.

← Browse all CVEs View on cve.org ↗