Published: 31/01/2016 Updated: 30/10/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 4.7 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Mozilla Firefox prior to 44.0 on Android allows remote malicious users to spoof the address bar via the scrollTo method.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

opensuse opensuse 13.2

opensuse opensuse 13.1

opensuse leap 42.1

mozilla firefox 43.0.4

google android

Vendor Advisories

Mozilla Firefox before 440 on Android allows remote attackers to spoof the address bar via the scrollTo method ...
Addressbar spoofing attacks Announced January 26, 2016 Reporter Jordi Chancel Impact High Products Firefox Fixed in Firefox 44 ...