CVE-2015-8510

CVE Database · CVE-2015-8510

CVE-2015-8510

· N/AModified

CVSS v3.1

N/A

EPSS

0.66%

Published

Jan 9, 2016

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in the internationalization feature in the default homescreen app in Mozilla Firefox OS before 2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via a crafted web site that is mishandled during "Add to home screen" bookmarking.

Weaknesses (CWE)

CWE-79

Affected Products (1)

mozilla · firefox_osvulnerable

References (4)

http://www.mozilla.org/security/announce/2015/mfsa2015-153.html

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=1190038

http://www.mozilla.org/security/announce/2015/mfsa2015-153.html

Vendor Advisory

https://bugzilla.mozilla.org/show_bug.cgi?id=1190038

KEV Catalog EPSS Scores Vendors All CVEs