CVE-2014-1526

CVE Database · CVE-2014-1526

CVE-2014-1526

· N/AModified

CVSS v3.1

N/A

EPSS

1.82%

Published

Apr 30, 2014

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.

Weaknesses (CWE)

CWE-269

Affected Products (9)

mozilla · firefox (up to 29.0)vulnerable

mozilla · seamonkey (up to 2.26)vulnerable

canonical · ubuntu_linuxvulnerable