CVE

CVE-2016-5260 (firefox)

admin

CVE-2016-5260 (firefox)

Mozilla Firefox before 48.0 mishandles changes from ‘INPUT type="password"’ to ‘INPUT type="text"’ within a single Session Manager session, which might allow attackers to discover cleartext passwords by reading a session restoration file.

Source: CVE-2016-5260 (firefox)

Exit mobile version