3 matches found
CVE-2018-5181
If a URL using the "file:" protocol is dragged and dropped onto an open tab that is running in a different child process the tab will open a local file corresponding to the dropped URL, contrary to policy. One way to make the target tab open more reliably in a separate process is to open it with...
CVE-2018-5181
CVE-2018-5181 affects Firefox versions prior to 60. Dragging a URL with the file: protocol onto an open tab running in a different child process can cause the tab to display the local file, contrary to policy. A mitigation mentioned in the description is to open the target tab with the noopener k...
CVE-2018-5181
If a URL using the "file:" protocol is dragged and dropped onto an open tab that is running in a different child process the tab will open a local file corresponding to the dropped URL, contrary to policy. One way to make the target tab open more reliably in a separate process is to open it with...