{"uuid": "88f3f8c4-356c-43cd-8c51-286572ef017b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26485", "type": "exploited", "source": "https://t.me/CNArsenal/420", "content": "\ud83d\udca5CVE-2022-26485 exploit(UAF in XSLT parameter processing, bugzilla )\nRemoving an XSLT parameter during processing could have lead to an exploitable use-after-free. Mozilla have had reports of attacks in the wild abusing this flaw. This vulnerability affects Firefox < 97.0.2, Firefox ESR < 91.6.1, Firefox for Android < 97.3.0, Thunderbird < 91.6.2, and Focus < 97.3.0. \n\n\u26a0\ufe0fTested against Firefox 78.0 (Windows)", "creation_timestamp": "2023-02-01T01:27:03.000000Z"}