CVE-2006-3810
EPSS 13.6%Published: 7/27/2006Modified: 4/28/2026
Also known as:DEBIAN-CVE-2006-3810
Description
Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct.
Affected packages (1)
- Debian/thunderbirdfrom 0, < 1.5.0.5-1