2015-08-16 01:00:00
mozilla
PUBLISHED
Mozilla Firefox before 40.0 allows man-in-the-middle attackers to bypass a mixed-content protection mechanism via a feed: URL in a POST request.