Lucene search
+L

54 matches found

NVD
NVD
added 5 days ago4 views

CVE-2026-45064

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. From 6.1.0-BETA1 until 6.4.40, 7.4.12, and 8.0.12, UrlSanitizer::parse passes Unicode explicit-direction BiDi formatting characters through into sanitized href and src attributes, allowing sanitized...

6.1CVSS0.00293EPSS
Exploits0References5
OSV
OSV
added 2026/05/27 8:4 p.m.12 views

GHSA-H5VQ-QFCG-4M6P Symfony's HtmlSanitizer URL Attributes Pass Through BiDi Override Characters → Visual href Spoofing

Description Symfony\Component\HtmlSanitizer\TextSanitizer\UrlSanitizer::parse used by UrlSanitizer::sanitize and therefore by every HtmlSanitizer config that allows links or media accepts URLs that contain Unicode explicit-direction BiDi formatting characters: U+202A–U+202E LRE / RLE / PDF / LRO ...

6.9CVSS5.9AI score0.00293EPSS
Exploits0References6
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Thunderbird

An attacker could create a malicious link that uses bidirectional characters to spoof the location in the address bar when visited. This vulnerability affects Firefox 117, Firefox ESR 115.4, and Thunderbird 115.4.1...

6.5CVSS6.5AI score0.00958EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-58018

Malicious code in bioql PyPI...

6.5CVSS7.8AI score0.00958EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.35 views

CentOS 7 : firefox (RHSA-2023:6162)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:6162 advisory. - VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. CVE-2023-44488 - It was possible for certain browser prompts a...

9.8CVSS7.8AI score0.01936EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/11/03 12:0 a.m.39 views

AlmaLinux 9 : thunderbird (ALSA-2023:6191)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:6191 advisory. - VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. CVE-2023-44488 - It was possible for certain browser prompts and...

9.8CVSS7.8AI score0.01936EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.32 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Thunderbird vulnerabilities (USN-6468-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6468-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a...

9.8CVSS7.4AI score0.01585EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/10/30 5:47 p.m.6 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:46 p.m.3 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:46 p.m.4 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:45 p.m.7 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:43 p.m.5 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:43 p.m.6 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:43 p.m.4 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:42 p.m.6 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:33 p.m.6 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:19 p.m.6 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 5:19 p.m.5 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 4:44 p.m.3 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/10/30 8:24 a.m.2 views

Mozilla: Address bar spoofing via bidirectional characters

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited...

6.5CVSS7.2AI score0.00958EPSS
Exploits0References6
Rows per page
Query Builder