Filter
AND
-Infinity
0

Firefoxjar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it wa…

First published (updated )

FirefoxA web page could trick a user into setting that site as the default handler for a custom URL protoco…

First published (updated )

FirefoxAndroid apps can load web pages using the Custom Tabs feature. This feature supports a transition an…

3.9
First published (updated )

FirefoxCertificate length was not properly checked when added to a certificate store. In practice only trus…

First published (updated )

FirefoxRace Condition

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ThunderbirdThe Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attack…

First published (updated )

FirefoxUnder certain circumstances, a user opt-in setting that Focus should require authentication before u…

3.3
EPSS
0.04%
First published (updated )

ThunderbirdWhen handling keypress events, an attacker may have been able to trick a user into bypassing the "Op…

First published (updated )

FirefoxBy sending a specially crafted push message, a remote server could have hung the parent process, cau…

First published (updated )

FirefoxA clipboard "paste" button could persist across tabs which allowed a spoofing attack. This vulnerabi…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

FirefoxRepeated writes to history interface attributes could have been used to cause a Denial of Service co…

First published (updated )

FirefoxA potential memory corruption vulnerability could be triggered if an attacker had the ability to tri…

First published (updated )

FirefoxBy checking the result of calls to `window.open` with specifically set protocol handlers, an attacke…

First published (updated )

FirefoxA website configured to initiate a specially crafted WebTransport session could crash the Firefox pr…

First published (updated )

FirefoxIf a site had been granted the permission to open popup windows, it could cause Select elements to a…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/firefoxLast updated 24 July 2024

3.7
EPSS
0.04%
First published (updated )

FirefoxLast updated 24 July 2024

3.7
EPSS
0.04%
First published (updated )

ThunderbirdLast updated 28 February 2025

2.7
EPSS
0.04%
First published (updated )

FirefoxLast updated 24 July 2024

3.1
First published (updated )

ubuntu/thunderbirdThe error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses…

3.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 102.8

First published (updated )

FirefoxLogins saved by Firefox should be managed by the Password Manager component which uses encryption to…

3.3
First published (updated )

Firefox ESRSecurity Vulnerabilities fixed in Firefox ESR 91.1

First published (updated )

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 91.1

First published (updated )

Mozilla VPNMultiple Low Security Issues in Mozilla VPN

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ThunderbirdSecurity Vulnerabilities fixed in Thunderbird 78.10.2

First published (updated )

ThunderbirdRace Condition

2.5
First published (updated )

FirefoxRace Condition

3.1
First published (updated )

FirefoxInfoleak, Race Condition

3.1
First published (updated )

ubuntu/firefoxA logic flaw in our location bar implementation could have allowed a local attacker to spoof the cur…

3.3
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203