By using XSL Transforms, a malicious webserver could have served a user an XSL document that would continue to execute JavaScript (within the bounds of the same-origin policy) even after the tab was closed. This vulnerability affects Firefox < 97.
The product uses, accesses, or otherwise operates on a resource after that resource has been expired, released, or revoked.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | * |