2020-07-09 14:47:46
mozilla
PUBLISHED
By navigating a tab using the history API, an attacker could cause the address bar to display the incorrect domain (with the https:// scheme, a blocked port number such as 1, and without a lock icon) while controlling the page contents. This vulnerability affects Firefox < 70.