Mozilla Firefox prior to 21.0 does not properly implement the INPUT element, which allows remote malicious users to obtain the full pathname via a crafted web site.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
mozilla firefox 19.0 |
||
mozilla firefox 19.0.1 |
||
mozilla firefox 19.0.2 |
||
mozilla firefox 20.0 |