Sage.mozdev : Security Vulnerabilities, CVEs, CVSS score >= 4
Sage 1.4.3 and earlier extension for Firefox performs certain operations with chrome privileges, which allows remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via the description tag of an RSS feed.
Max CVSS
9.3
EPSS Score
1.79%
Published
2009-11-29
Updated
2017-08-17
1 vulnerabilities found