CVE-2015-4483

Mozilla Firefox before 40.0 allows man-in-the-middle attackers to bypass a mixed-content protection mechanism via a feed: URL in a POST request.

Date published : 2015-08-15

http://www.securityfocus.com/bid/76510

http://www.mozilla.org/security/announce/2015/mfsa2015-86.html