• info
• discussion
• exploit
• solution
• references

Mozilla Firefox Yoono Extension DOM Event Handler Cross Domain Scripting Vulnerability

An attacker must entice a user to view a malicious webpage with the affected extension.