Loading...
Loading...
The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not perform any security checks related to the same-domain policy, which allows remote attackers to read or access data from other domains via crafted XBL bindings.
December 17, 2008
April 23, 2026
See which npm, PyPI, Go, and Maven packages are affected by CVE-2008-5503
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.