CVE-2025-6430 | Mozilla Firefox up to 139 HTTP Header Content-Disposition cross site scripting

A vulnerability was found in Mozilla Firefox up to 139. It has been classified as problematic. Affected is an unknown function of the component HTTP Header Handler. The manipulation of the argument Content-Disposition leads to cross site scripting.

This vulnerability is traded as CVE-2025-6430. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More