Mozilla Foundation Security Advisory 2023-48

Security Vulnerabilities fixed in Firefox for iOS 119

Announced
October 24, 2023
Impact
high
Products
Firefox for iOS
Fixed in
  • Firefox for iOS 119

#CVE-2023-5758: Cross-Site Scripting (XSS) in reader mode

Reporter
Irwan
Impact
high
Description

When opening a page in reader mode, the redirect URL could have caused attacker-controlled script to execute in a reflected Cross-Site Scripting (XSS) attack.

References