2019-11-14 02:30:09
mitre
PUBLISHED
SnowHaze before 2.6.6 is sometimes too late to honor a per-site JavaScript blocking setting, which leads to unintended JavaScript execution via a chain of webpage redirections targeted to the users browser configuration.