CVE-2016-2832
Mozilla Firefox before 47.0 allows remote attackers to discover the list of disabled plugins via a fingerprinting attack involving Cascading Style Sheets (CSS) pseudo-classes.
Date published : 2016-06-13
http://www.mozilla.org/security/announce/2016/mfsa2016-59.html