XMLHttpRequest inherits incorrect principal within sandbox

ID MFSA2012-97
Type mozilla
Reporter Mozilla Foundation
Modified 2012-11-20T00:00:00


Mozilla developer Gabor Krizsanits discovered that XMLHttpRequest objects created within sandboxes have the system principal instead of the sandbox principal. This can lead to cross-site request forgery (CSRF) or information theft via an add-on running untrusted code in a sandbox.