Loading...
Loading...
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to create documents that lack script-handling objects, and execute arbitrary code with chrome privileges, via vectors related to (1) the document.loadBindingDocument function and (2) XSLT.
September 24, 2008
April 23, 2026
See which npm, PyPI, Go, and Maven packages are affected by CVE-2008-4060
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.