|The focus handling for the onkeydown event in Mozilla Firefox
220.127.116.11, 18.104.22.168 and other versions before 22.214.171.124, and SeaMonkey
before 1.1.5 allows remote attackers to change field focus and copy
keystrokes via the "for" attribute in a label, which bypasses the
focus prevention, as demonstrated by changing focus from a textarea to
a file upload field.