Описание
Utilizing a 302 redirect, an attacker could have conducted a Universal Cross-Site Scripting (UXSS) on a victim website, if the victim had a link to the attacker's website. This vulnerability affects Focus for iOS < 123.
Ссылки
- ExploitIssue TrackingVendor Advisory
- Vendor Advisory
- ExploitIssue TrackingVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 123.0 (исключая)
cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:iphone_os:*:*
EPSS
Процентиль: 70%
0.00651
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
почти 2 года назад
Utilizing a 302 redirect, an attacker could have conducted a Universal Cross-Site Scripting (UXSS) on a victim website, if the victim had a link to the attacker's website. This vulnerability affects Focus for iOS < 123.
EPSS
Процентиль: 70%
0.00651
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79