Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x up to and including 4.0.1 allows remote malicious users to inject arbitrary web script or HTML via an SVG element containing an HTML-encoded entity.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 4.0 |
||
mozilla firefox 4.0.1 |