CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

CVE-2018-5134

WebExtensions may use "view-source:" URLs to view local "file:" URL content, as well as content stored in "about:cache", bypassing restrictions that only allow WebExtensions to view specific content. This vulnerability affects Firefox 59...

CVE-2018-5152

WebExtensions with the appropriate permissions can attach content scripts to Mozilla sites such as accounts.firefox.com and listen to network traffic to the site through the "webRequest" API. For example, this allows for the interception of username and an encrypted password during login to Firef...

CVE-2018-5166

WebExtensions can use request redirection and a "filterReponseData" filter to bypass host permission settings to redirect network traffic and access content from a host for which they do not have explicit user permission. This vulnerability affects Firefox 60...

CVE-2017-7816

WebExtensions could use popups and panels in the extension UI to load an "about:" privileged URL, violating security checks that disallow this behavior. This vulnerability affects Firefox 56...

CVE-2018-5113

The issue CVE-2018-5113 affects Firefox

CVE-2018-5116

WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin. Malicious extensions can inject frames from arbitrary origins into the loaded page and then interact with them, bypassing same-origin user expectations with th...

CVE-2016-9073

CVE-2016-9073 : In Firefox, the WebExtensions API window.create schema did not specify format: 'relativeUrl', enabling a WebExtension to load privileged URLs and potentially escape the WebExtension sandbox. Affected: Firefox before 50.0. Impact is sandbox escape and elevation of privilege for ext...

CVE-2017-7821

CVE-2017-7821 : A vulnerability in Firefox (WebExtensions) allows downloading and attempting to open certain non-executable file types without user interaction, potentially triggering vulnerabilities in handlers for those document types. The issue affects Firefox versions older than 56 (per mfsa2...

CVE-2016-9075

An issue where WebExtensions can use the mozAddonManager API to elevate privilege due to privileged pages being allowed in the permissions list. This allows a malicious extension to then install additional extensions without explicit user permission. This vulnerability affects Firefox 50...

CVE-2018-5135

WebExtensions can bypass normal restrictions in some circumstances and use "browser.tabs.executeScript" to inject scripts into contexts where this should not be allowed, such as pages from other WebExtensions or unprivileged "about:" pages. This vulnerability affects Firefox 59...

CVE-2016-9075

An issue where WebExtensions can use the mozAddonManager API to elevate privilege due to privileged pages being allowed in the permissions list. This allows a malicious extension to then install additional extensions without explicit user permission. This vulnerability affects Firefox 50...

CVE-2018-5166

WebExtensions can use request redirection and a "filterReponseData" filter to bypass host permission settings to redirect network traffic and access content from a host for which they do not have explicit user permission. This vulnerability affects Firefox 60...

CVE-2018-5116

The CVE-2018-5116 entry concerns Mozilla Firefox prior to version 58.0 where WebExtensions with the ActiveTab permission can access cross-origin frames within the active tab, allowing malicious extensions to inject and interact with frames from arbitrary origins and bypass same-origin expectation...

CVE-2017-7816

CVE-2017-7816 affects Mozilla Firefox versions before 56.0. WebExtensions could use popups or panels in the extension UI to load an "about:" privileged URL, bypassing security checks that disallow this behavior. Root cause: the extension UI could navigate to a privileged page, enabling potential ...

CVE-2018-5134

CVE-2018-5134 affects Mozilla Firefox versions older than 59.0. WebExtensions could use view-source: URLs to access local file: URLs and content in about:cache, bypassing content restrictions. This is described as a WebExtensions content-exposure issue. The numbered references indicate the adviso...

CVE-2018-5132

CVE-2018-5132 : The Find API for WebExtensions in Firefox can search privileged pages (for example, about:debugging) when those pages are open in a tab, potentially exposing protected data. Affected products/versions: Firefox

CVE-2017-7816

WebExtensions could use popups and panels in the extension UI to load an "about:" privileged URL, violating security checks that disallow this behavior. This vulnerability affects Firefox 56...

CVE-2018-5113

The "browser.identity.launchWebAuthFlow" function of WebExtensions is only allowed to load content over "https:" but this requirement was not properly enforced. This can potentially allow privileged pages to be loaded by the extension. This vulnerability affects Firefox 58...

CVE-2018-5105

WebExtensions can bypass user prompts to first save and then open an arbitrarily downloaded file. This can result in an executable file running with local user privileges without explicit user consent. This vulnerability affects Firefox 58...