GHSA-h55j-6jm9-f8vpMediumCVSS 5.4

Firefox for iOS Reader View replaced page content in its HTML template before replacing other...

Published
June 1, 2026
Last Modified
June 1, 2026

🔗 CVE IDs covered (1)

📋 Description

Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malicious page could include a placeholder string that was later substituted with JSON-LD data, potentially resulting in arbitrary JavaScript execution. This vulnerability was fixed in Firefox for iOS 151.2.

🔗 References (4)