GHSA-h55j-6jm9-f8vpMediumCVSS 5.4
Firefox for iOS Reader View replaced page content in its HTML template before replacing other...
🔗 CVE IDs covered (1)
📋 Description
Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malicious page could include a placeholder string that was later substituted with JSON-LD data, potentially resulting in arbitrary JavaScript execution. This vulnerability was fixed in Firefox for iOS 151.2.