0xMarcio/cve
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
master
cve/2010/CVE-2010-2754.md

18 lines
920 B
Markdown
Raw Permalink Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2010-2754](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2754)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)
Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### Description
dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppress a script's URL in certain circumstances involving a redirect and an error message, which allows remote attackers to obtain sensitive information about script parameters via a crafted HTML document, related to the window.onerror handler.
### POC
#### Reference
- https://bugzilla.mozilla.org/show_bug.cgi?id=568564
#### Github
No PoCs found on GitHub currently.
Reference in New Issue Copy Permalink