CVE-2018-5181
UNKNOWN
Published 2018-06-11T21:00:00
Actions:
No CVSS data available
Description
If a URL using the "file:" protocol is dragged and dropped onto an open tab that is running in a different child process the tab will open a local file corresponding to the dropped URL, contrary to policy. One way to make the target tab open more reliably in a separate process is to open it with the "noopener" keyword. This vulnerability affects Firefox < 60.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Affected Versions:
References
Published: 2018-06-11T21:00:00
Last Modified: 2024-08-05T05:26:47.013Z
Copied to clipboard!