Endpoint Vulnerability

Referrer policy ignored when links opened by middle-click and context menu

Description

Security researcher Alex Verstak reported that is ignored when a link is opened through the context menu or a middle-click by mouse. This means that, in some situations, the referrer policy is ignored when opening links in new tabs and may cause some pages to open without an HTTP Referer header being set according to the author's intended policy.

Affected Products

Firefox

References

CVE-2015-2711,