XSS in Mozilla Firefox_os

CVE-2015-2745

Multiple cross-site scripting (XSS) vulnerabilities in the Search app in Gaia in Mozilla Firefox OS before 2.2 allow remote attackers to inject arbitrary HTML via the (1) name or (2) title field in card content associated with a search lin…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.003 (55.6th percentile) — read the EPSS interpretation.