🚨 GitHub 监控消息提醒🚨 发现关键词： #XSS #CVE #DOM📦 项目名称： DOM-Based-XSS-in-Pocket-Mobile-Android-iOS-Unsanitized-WebView-HTML-Injection-since-13-Year👤 项目作者： FUNFACTOR1🛠 开发语言： Unknown⭐ Star数量： 0 | 🍴 Fork数量： 0📅 更新时间： 2026-06-29 15:44:58📝 项目描述：0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(document.body).html(content) in articleview-mobile.js. Background service triggers execution without user interaction. Java bridge exposed. Reported to Mozilla Security 2024-07-10. Won't Fix. CVE pending.🔗 点击访问项目地址 | GitHub 红队武器库🚨

🚨 GitHub 监控消息提醒

🚨 发现关键词： #XSS #CVE #DOM

📦 项目名称： DOM-Based-XSS-in-Pocket-Mobile-Android-iOS-Unsanitized-WebView-HTML-Injection-since-13-Year
👤 项目作者： FUNFACTOR1
🛠 开发语言： Unknown
⭐ Star数量： 0 | 🍴 Fork数量： 0
📅 更新时间： 2026-06-29 15:44:58

📝 项目描述：

0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(document.body).html(content) in articleview-mobile.js. Background service triggers execution without user interaction. Java bridge exposed. Reported to Mozilla Security 2024-07-10. Won't Fix. CVE pending.

🔗 点击访问项目地址

GitHub - FUNFACTOR1/DOM-Based-XSS-in-Pocket-Mobile-Android-iOS-Unsanitized-WebView-HTML-Injection-since-13-Year: 0-click XSS (CWE…

0-click XSS (CWE-79) in Mozilla Pocket Android v8.33.0.0 via unsanitized $(document.body).html(content) in articleview-mobile.js. Background service triggers execution without user interaction. Jav...

Powered by BroadcastChannel & Sepia