CVE-2022-29914 Reusing existing popups could have allowed for browser spoofing attacks.
Thunderbird and Firefox are not vulnerable if they are using the --force-fullscreen command line argument. All versions of the browser are vulnerable to clickjacking if
CVE-2022-31741 A crafted CMS message could have led to an invalid memory read, potentially memory corruption
If a user visited a malicious website or opened a malicious file on Windows, an attacker could potentially exploit this vulnerability to access arbitrary system
CVE-2022-36314 When opening a Windows shortcut, an attacker could supply a remote path that leads to unexpected network requests. This bug only affects Firefox for Windows.
It affects Windows Server operating systems that are running Windows Server 2008 or later, but it might not occur on systems that are running Windows
CVE-2022-22743 An attacker-controlled tab could make the browser unable to leave fullscreen mode.
Firefox users that are relying on Google Chrome or Microsoft Edge to view sites that have been changed to require full-screen mode are advised to
CVE-2022-4250 The vulnerability of the file booking.php is a problem because the id argument is manipulated by cross site scripting.
The attacker may exploit the application by injecting malicious code to execute malicious actions. The access to the targeted system would be possible by manipulating
Episode
00:00:00
00:00:00