Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 makes it easier for remote attackers to inject arbitrary web script or HTML by leveraging a Same Origin Policy violation triggered by lack of a charset parameter in a Content-Type HTTP header.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2013-12-11T15:00:00
Updated: 2016-12-20T16:57:01
Reserved: 2013-08-26T00:00:00
Link: CVE-2013-5612
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-12-11T15:55:12.763
Modified: 2020-08-21T18:42:02.307
Link: CVE-2013-5612
JSON object: View
Redhat Information
No data.
CWE