🚨 GitHub 监控消息提醒
🚨 发现关键词: #XSS #CVE
📦 项目名称: pocket-android-xss-0click-cve
👤 项目作者: FUNFACTOR1
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-05-26 22:56:15
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #XSS #CVE
📦 项目名称: pocket-android-xss-0click-cve
👤 项目作者: FUNFACTOR1
🛠 开发语言: Unknown
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-05-26 22:56:15
📝 项目描述:
0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(document.body).html(content) in articleview-mobile.js. Background service triggers execution without user interaction. Java bridge exposed. Reported to Mozilla Security 2024-07-10. Won't Fix. CVE pending.🔗 点击访问项目地址
GitHub
GitHub - FUNFACTOR1/pocket-android-xss-0click-cve: 0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(…
0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(document.body).html(content) in articleview-mobile.js. Background service triggers execution without user interaction. Jav...
