Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-26485 PoC — Mozilla Firefox 资源管理错误漏洞

Source
https://github.com/mistymntncop/CVE-2022-26485
Associated Vulnerability
Title:Mozilla Firefox 资源管理错误漏洞 (CVE-2022-26485)
Description:Removing an XSLT parameter during processing could have lead to an exploitable use-after-free. We have had reports of attacks in the wild abusing this flaw. This vulnerability affects Firefox < 97.0.2, Firefox ESR < 91.6.1, Firefox for Android < 97.3.0, Thunderbird < 91.6.2, and Focus < 97.3.0.
Readme
# CVE-2022-26485
Tested against Firefox 78.0 (Windows)
https://ftp.mozilla.org/pub/firefox/releases/78.0/win64/en-US/Firefox%20Setup%2078.0.exe
File Snapshot

 [4.0K]  /data/pocs/b4e477075a29b83993b379e655f4bf2a97356291
├── [ 21K]  exploit.html
└── [ 145]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →