VYPR
Unrated severityNVD Advisory· Published Sep 18, 2013· Updated Jun 16, 2026

CVE-2013-1727

CVE-2013-1727

Description

Mozilla Firefox before 24.0 on Android allows attackers to bypass the Same Origin Policy, and consequently conduct cross-site scripting (XSS) attacks or obtain password or cookie information, by using a symlink in conjunction with a file: URL for a local file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=23.0.1
    • cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:20.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:21.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:22.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:23.0:*:*:*:*:*:*:*
    • (no CPE)range: <24.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.