Lucene search
K

7 matches found

ATTACKERKB
ATTACKERKB
added 2025/10/14 12:27 p.m.4 views

CVE-2025-11720

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

8.1CVSS5.7AI score0.00244EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/08/21 12:0 a.m.28 views

Mozilla Firefox < 59 Multiple Vulnerabilities

Binary data 700328.prm...

9.8CVSS7.3AI score0.12054EPSS
Exploits2References21
OSV
OSV
added 2018/06/11 9:29 p.m.2 views

CVE-2018-5138

A spoofing vulnerability can occur when a malicious site with an extremely long domain name is opened in an Android Custom Tab a browser panel inside another app and the default browser is Firefox for Android. This could allow an attacker to spoof which page is actually loaded and in use. Note:...

5.3CVSS7.2AI score0.0111EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2018/06/11 9:29 p.m.24 views

CVE-2018-5138

A spoofing vulnerability can occur when a malicious site with an extremely long domain name is opened in an Android Custom Tab a browser panel inside another app and the default browser is Firefox for Android. This could allow an attacker to spoof which page is actually loaded and in use. Note:...

5.3CVSS6.7AI score0.0111EPSS
Exploits0References2
Prion
Prion
added 2018/06/11 9:29 p.m.17 views

Design/Logic Flaw

A spoofing vulnerability can occur when a malicious site with an extremely long domain name is opened in an Android Custom Tab a browser panel inside another app and the default browser is Firefox for Android. This could allow an attacker to spoof which page is actually loaded and in use. Note:...

5CVSS5.2AI score0.0111EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.27 views

CVE-2018-5138

A spoofing vulnerability can occur when a malicious site with an extremely long domain name is opened in an Android Custom Tab a browser panel inside another app and the default browser is Firefox for Android. This could allow an attacker to spoof which page is actually loaded and in use. Note:...

5.3CVSS7.1AI score0.0111EPSS
Exploits0
CNVD
CNVD
added 2018/03/15 12:0 a.m.2 views

Mozilla Firefox Domain Spoofing Vulnerability (CNVD-2018-07310)

Mozilla Firefox browser Firefox is a free, open source browser for Windows, Linux and MacOSX platforms. A domain spoofing vulnerability exists in Mozilla Firefox. A remote user can exploit the vulnerability to spoof domain names via the Android Custom Tab. Android-based systems are affected...

5.3CVSS8.6AI score0.0111EPSS
Exploits0References1
Rows per page
Query Builder