CVE-2023-40191

Reflected cross-site scripting XSS vulnerability in the instance settings for Accounts in Liferay Portal 7.4.3.44 through 7.4.3.97, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 44 through 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected in...

Mozilla Firefox OS Access Restriction Bypass Vulnerability

Firefox OS is an open source mobile operating system with a Linux kernel for smartphones. Mozilla Firefox OS versions prior to 2.2, the COPPA error page in the Accounts Settings dialog box, embeds the contents of an external web server URL into a system process. This could allow a man-in-the-midd...