Filter
-Infinity
0
Trending
Software
mozilla seamonkey
709
mozilla thunderbird
286
mozilla firefox
193
mozilla nss esr
52
mozilla focus
49
mozilla suite
27
mozilla firefox esr
18
mozilla firefox os
15
mozilla mozilla
14
mozilla network security services
13
mozilla thunderbird esr
12
mozilla vpn
8
mozilla bleach
5
mozilla bonsai
4
mozilla hubs cloud reticulum
4
mozilla bugzilla
2
mozilla convict
2
mozilla gecko
2
mozilla geckodriver
2
mozilla hubs cloud
2
mozilla pollbot
2
mozilla webthings gateway
2
mozilla camino
1
mozilla common voice
1
mozilla durian web application server
1
mozilla geckb
1
mozilla hawk
1
mozilla libxul
1
mozilla mozilla suite
1
mozilla network security services (nspr)
1
mozilla nss
1
mozilla persona
1
mozilla web push
1
mozilla zamboni
1
BleepingComputerMozilla fixes Firefox zero-days exploited at hacking contest
First published (updated )
News
BleepingComputerBleepingComputerHackers earn $1,078,750 for 28 zero-days at Pwn2Own Berlin
First published (updated )
News
BleepingComputerAn attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing a…
First published (updated )
An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object.
First published (updated )
Rejected reason: Duplicate of CVE-2025-4918
EPSS
0.02%
First published (updated )
Rejected reason: Duplicate of CVE-2025-4919
EPSS
0.02%
First published (updated )
Rejected reason: Duplicate of CVE-2025-4918
EPSS
0.02%
First published (updated )
Rejected reason: Duplicate of CVE-2025-4919
EPSS
0.02%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
It was possible to craft an email that showed a tracking link as an attachment. If the user attempte…
6.5
First published (updated )
Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an in…
7.5
First published (updated )
Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute J…
6.5
First published (updated )
It was possible to craft an email that showed a tracking link as an attachment. If the user attempte…
6.5
First published (updated )
Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an in…
7.5
First published (updated )
Thunderbird's handling of the X-Mozilla-External-Attachment-URL header can be exploited to execute J…
6.5
First published (updated )
ZDNetYour password manager is under attack: How to defend yourself against a new threat
First published (updated )
News
ZDNetFirefoxMozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYS…
7
First published (updated )
FirefoxMemory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
FirefoxA process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, whi…
7
First published (updated )
Firefox ESRMemory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of m…
7
First published (updated )
FirefoxA vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due t…
First published (updated )
FirefoxMemory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9…
First published (updated )
Firefox ESRModification of specific WebGL shader attributes could trigger an out-of-bounds read, which, when ch…
7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
FirefoxA security vulnerability in Firefox allowed malicious sites to use redirects to send credentialed re…
First published (updated )
Firefox ESRA vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due t…
First published (updated )
FirefoxDue to insufficient escaping of special characters in the "copy as cURL" feature, an attacker could …
First published (updated )
Firefox ESRDue to insufficient escaping of the special characters in the "copy as cURL" feature, an attacker co…
First published (updated )
ThunderbirdAn attacker with control over a content process could potentially leverage the privileged UITour act…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Mozilla ThunderbirdMemory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of m…
7
First published (updated )
ThunderbirdMemory safety bugs present in Firefox 137 and Thunderbird 137. Some of these bugs showed evidence of…
7
First published (updated )