From thehackernews.com
![firefox browser javascript injection attacks](https://1.bp.blogspot.com/-Cfa28lak_08/XaWhvC9pYBI/AAAAAAAA1as/ugBOTiUhax4uJbWLdE7b_3SS1cgaNxkawCLcBGAsYHQ/s728-e100/firefox-browser-javascript-injection-attacks.jpg)
In an effort to mitigate a large class of potential cross-site scripting issues in Firefox, Mozilla has blocked execution of all inline scripts and potentially dangerous eval-like functions for built-in “about: pages” that are the gateway to sensitive preferences, settings, and statics of the browser.