CVE-2025-11712 | Mozilla Thunderbird up to 143 OBJECT Tag cross site scripting

A vulnerability was found in Mozilla Thunderbird up to 143. It has been rated as problematic. Affected by this vulnerability is an unknown functionality of the component OBJECT Tag Handler. Performing manipulation results in cross site scripting.

This vulnerability is identified as CVE-2025-11712. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More