Medium severity6.5NVD Advisory· Published Aug 10, 2020· Updated Jun 17, 2026
CVE-2020-15648
CVE-2020-15648
Description
Using object or embed tags, it was possible to frame other websites, even if they disallowed framing using the X-Frame-Options header. This vulnerability affects Thunderbird < 78 and Firefox < 78.0.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4<78.0.2+ 1 more
- (no CPE)range: <78.0.2
- (no CPE)range: unspecified
<78+ 1 more
- (no CPE)range: <78
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
3- bugzilla.mozilla.org/show_bug.cginvdIssue TrackingVendor Advisory
- www.mozilla.org/security/advisories/mfsa2020-28/nvdVendor Advisory
- www.mozilla.org/security/advisories/mfsa2020-29/nvdVendor Advisory
News mentions
0No linked articles in our index yet.