Loading...
Loading...
Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded document, or (3) the onreadystatechange handler in conjunction with an XMLHttpRequest.
July 7, 2008
April 23, 2026
See which npm, PyPI, Go, and Maven packages are affected by CVE-2008-2800
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.