Mozilla Firefox prior to 2.0.0.12 and SeaMonkey prior to 1.1.8 allows user-assisted remote malicious users to trick the user into uploading arbitrary files via label tags that shift focus to a file input field, aka "focus spoofing."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla seamonkey |
||
mozilla firefox |