Loading...
Loading...
The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and SeaMonkey before 1.1.10 does not apply XPCNativeWrappers to scripts loaded from (1) file: URIs, (2) data: URIs, or (3) certain non-canonical chrome: URIs, which allows remote attackers to execute arbitrary code via vectors involving third-party add-ons.
July 7, 2008
April 23, 2026
See which npm, PyPI, Go, and Maven packages are affected by CVE-2008-2803
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.