If an attacker could control the contents of an iframe sandboxed with allow-popups but not allow-scripts, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox. This vulnerability affects Firefox < 98, Firefox ESR < 91.7, and Thunderbird < 91.7.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 98.0 (excluding) |
Firefox_esr | Mozilla | * | 91.7 (excluding) |
Thunderbird | Mozilla | * | 91.7 (excluding) |