Godson Bastin

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 120 **Description** The issue is related to a browser vulnerability that can lead to the redirection of URLs to untrusted sites, potentially allowing remote attackers to conduct phishing attacks using specially crafted malicious links. It is also noted that when an HTTPS web page creates a pop-up from a "javascript:" URL, the pop-up is incorrectly allowed to load blockable content, such as iframes from insecure HTTP URLs. **Recommendations** For versions prior to 120, update to version 120 or later to resolve the issue. As a temporary workaround, consider restricting the use of pop-ups from "javascript:" URLs to minimize the risk of exploitation. Avoid using insecure HTTP URLs in iframes within HTTPS web pages until the issue is resolved.