CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

105 matches found

NVD•added 2026/05/25 3:16 p.m.•8 views

CVE-2026-9078

Firefox for iOS displayed specially crafted right-to-left RTL and internationalized domain names IDNs incorrectly in link preview UI surfaces. A crafted RTL hostname could visually reorder portions of the displayed domain, causing attacker-controlled sites to appear as trusted origins. This...

5.4CVSS0.00038EPSS

Exploits0References2

Vulnrichment•added 2026/05/25 2:5 p.m.•5 views

CVE-2026-9078 Firefox iOS RTL Domain Rendering Issue in Link Preview

5.8AI score0.00038EPSS

Exploits0References2

EUVD•added 2026/05/25 2:5 p.m.•6 views

EUVD-2026-31693

5.8AI score0.00038EPSS

Exploits0References2

AlpineLinux•added 2026/05/25 2:5 p.m.•14 views

CVE-2026-9078

5.4CVSS5.8AI score0.00038EPSS

Exploits0References2

ATTACKERKB•added 2026/05/25 2:5 p.m.•5 views

CVE-2026-9078

5.8AI score0.00038EPSS

Exploits0References3

Mozilla•added 2026/05/25 12:0 a.m.•17 views

Security Vulnerabilities fixed in Firefox for iOS 151.1 — Mozilla

5.4CVSS5.8AI score0.00038EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/05/25 12:0 a.m.•5 views

Mozilla Firefox for iOS 安全漏洞

Mozilla Firefox for iOS is a web browser designed for iOS devices by the US-based Mozilla Foundation. A security vulnerability exists in Mozilla Firefox for iOS prior to version 151.1, which stems from the incorrect display of specially crafted right-to-left domain names and internationalized...

5.4CVSS5.7AI score0.00038EPSS

Exploits0References3

NVD•added 2025/12/18 3:15 p.m.•2 views

CVE-2025-14744

Unicode RTLO characters could allow malicious websites to spoof filenames in the downloads UI for Firefox for iOS, potentially tricking users into saving files of an unexpected file type. This vulnerability was fixed in Firefox for iOS 144.0...

6.5CVSS0.00026EPSS

Exploits0References2

OSV•added 2025/12/18 3:15 p.m.•3 views

CVE-2025-14744

6.5CVSS5.8AI score

Exploits0References2

OSV•added 2025/12/18 3:15 p.m.•2 views

UBUNTU-CVE-2025-14744

6.5CVSS5.8AI score0.00026EPSS

Exploits0References4

UbuntuCve•added 2025/12/18 3:15 p.m.•2 views

CVE-2025-14744

6.5CVSS5.8AI score0.00026EPSS

Exploits0References3

CVE•added 2025/12/18 2:21 p.m.•12 views

CVE-2025-14744

CVE-2025-14744 concerns Unicode RTLO spoofing in Firefox for iOS prior to version 144.0. The issue allows a malicious website to render spoofed filenames in the downloads UI, potentially misleading users into saving files with an unintended file type. Affected product: Firefox for iOS

6.5CVSS5.8AI score0.00026EPSS

Exploits0References2Affected Software1

Cvelist•added 2025/12/18 2:21 p.m.•18 views

CVE-2025-14744 Filename spoofing via Unicode Right-to-Left Override in Firefox for iOS

0.00026EPSS

Exploits0References2

Positive Technologies•added 2025/12/18 12:0 a.m.•4 views

PT-2025-52225

6.3AI score0.00026EPSS

Exploits0References3

RedhatCVE•added 2025/12/09 8:27 a.m.•3 views

CVE-2025-66548

Nextcloud Deck is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. Prior to 1.12.7, 1.14.4, and 1.15.1, file extension can be spoofed by using RTLO characters, tricking users into download files with a different extension th...

5.5CVSS6.8AI score0.00012EPSS

Exploits0References1

NVD•added 2025/12/05 6:15 p.m.•2 views

CVE-2025-66548

5.5CVSS0.00012EPSS

Exploits0References4

Vulnrichment•added 2025/12/05 5:26 p.m.•2 views

CVE-2025-66548 Nextcloud Deck app allows to spoof file extensions by using RTLO characters

3.3CVSS6.4AI score0.00012EPSS

Exploits0References4

Cvelist•added 2025/12/05 5:26 p.m.•18 views

CVE-2025-66548 Nextcloud Deck app allows to spoof file extensions by using RTLO characters