Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:mozilla/Firefox@88.0.1
purl pkg:mozilla/Firefox@88.0.1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-qm3n-zmh9-afgy By triggering multiple pop-up prompts containing javascript: URLs, a malicious webpage could have forced a Firefox for Android user into executing attacker-controlled JavaScript in the context of another domain, resulting in a Universal Cross-Site Scripting vulnerability.*Note: This issue only affected Firefox for Android. Other operating systems are unaffected.* CVE-2021-29953

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:17:10.977924+00:00 Mozilla Importer Fixing VCID-qm3n-zmh9-afgy https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2021/mfsa2021-20.yml 38.0.0