CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

68 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в firefox, thunderbird

If a custom mouse cursor is specified in CSS, under certain circumstances the cursor might be drawn over the browser UI, potentially causing confusion for users or leading to spoofing attacks. This vulnerability affects Firefox ESR 102.5, Thunderbird 102.5, and Firefox 107...

6.1CVSS7.1AI score0.00178EPSS

Exploits0References2

ATTACKERKB•added 2026/03/13 9:55 p.m.•3 views

CVE-2026-0385

Microsoft Edge Chromium-based for Android Spoofing Vulnerability...

5CVSS5.8AI score0.00032EPSS

Exploits0References2Affected Software1

RedHat Linux•added 2025/12/01 2:17 a.m.•3 views

firefox: thunderbird: Spoofing issue in Firefox

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Spoofing issue in Firefox...

3.4CVSS5.7AI score0.00043EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-4309

Malware in sbrugna...

3.1CVSS6.4AI score0.07191EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-27956

Malware in sbrugna...

4.3CVSS7AI score0.00208EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-34224

Malicious code in bioql PyPI...

6.5CVSS8AI score0.00239EPSS

Exploits0References5

AlpineLinux•added 2025/08/19 9:15 p.m.•3 views

CVE-2025-8364

A crafted URL using a blob: URI could have hidden the true origin of the page, resulting in a potential spoofing attack. Note: This issue only affected Android operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 141...

4.3CVSS6.6AI score0.0005EPSS

Exploits0References3

Apple•added 2025/01/27 12:0 a.m.•396 views

About the security content of Safari 18.3

About the security content of Safari 18.3 This document describes the security content of Safari 18.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

8.8CVSS7.4AI score0.01179EPSS

Exploits0References1Affected Software1

RedHat Linux•added 2024/12/02 5:16 p.m.•2 views

firefox: thunderbird: URL Bar Spoofing via Manipulated Punycode and Whitespace Characters

A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: A crafted URL containing Arabic script and whitespace characters could have hidden the true origin of the page, resulting in a potential spoofing attack...

5.4CVSS7.3AI score0.00167EPSS

Exploits0References9

OSV•added 2024/11/22 3:15 p.m.•3 views

CVE-2024-49054

Microsoft Edge Chromium-based Spoofing Vulnerability...

4.3CVSS5.8AI score0.00126EPSS

Exploits0References1

OSV•added 2024/03/22 10:15 p.m.•1 views

CVE-2024-29057

Microsoft Edge Chromium-based Spoofing Vulnerability...

4.3CVSS5.8AI score0.00971EPSS

Exploits0References1

OSV•added 2023/07/14 6:15 p.m.•3 views

CVE-2023-36883

Microsoft Edge for iOS Spoofing Vulnerability...

4.3CVSS5.8AI score0.00248EPSS

Exploits0References1

ATTACKERKB•added 2023/06/02 5:15 p.m.•4 views

CVE-2023-25743

A lack of in app notification for entering fullscreen mode could have lead to a malicious website spoofing browser chrome. This bug only affects Firefox Focus. Other versions of Firefox are unaffected.. This vulnerability affects Firefox 110 and Firefox ESR 102.8...

7.5CVSS5.9AI score0.00084EPSS

Exploits0References4

RedHat Linux•added 2023/02/20 12:20 p.m.•3 views

Mozilla: Fullscreen notification not shown in Firefox Focus

The Mozilla Foundation Security Advisory describes this flaw as: A lack of in app notification for entering fullscreen mode could have lead to a malicious website spoofing browser chrome. This bug only affects Firefox Focus. Other versions of Firefox are unaffected...

7.5CVSS7.3AI score0.00084EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 6:11 a.m.•3 views

SUSE CVE-2007-2871

Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to spoof or hide the browser chrome, such as the location bar, by placing XUL popups outside of the browser's content pane. NOTE: this issue can be leveraged for phishing and other...

4.3CVSS8.7AI score0.16946EPSS

Exploits0References4

Mozilla•added 2023/02/14 12:0 a.m.•160 views

Security Vulnerabilities fixed in Firefox 110 — Mozilla

The Content-Security-Policy-Report-Only header could allow an attacker to leak a child iframe's unredacted URI when interaction with that iframe triggers a redirect. A background script invoking requestFullscreen and then blocking the main thread could force the browser into fullscreen mode...

8.8CVSS1.4AI score0.00389EPSS

Exploits0References24Affected Software1

NVD•added 2022/12/22 8:15 p.m.•21 views

CVE-2022-29914

When reusing existing popups Firefox would have allowed them to cover the fullscreen notification UI, which could have enabled browser spoofing attacks. This vulnerability affects Thunderbird 91.9, Firefox ESR 91.9, and Firefox 100...

6.5CVSS0.00239EPSS

Exploits0References4

OSV•added 2022/12/22 8:15 p.m.•1 views

CVE-2022-29914

6.5CVSS8.8AI score

Exploits0References4

AlpineLinux•added 2022/12/22 12:0 a.m.•45 views

CVE-2022-29914

6.5CVSS7.6AI score0.00239EPSS

Exploits0