CVE-2025-6428 – Firefox for Android URL Following Vulnerability

June 24, 2025

CVE ID : CVE-2025-6428

Published : June 24, 2025, 1:15 p.m. | 1 hour, 23 minutes ago

Description : When a URL was provided in a link querystring parameter, Firefox for Android would follow that URL instead of the correct URL, potentially leading to phishing attacks.
*This bug only affects Firefox for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox
Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6429 – Firefox YouTube Domain URL Parsing Vulnerability

Next Article CVE-2025-6425 – Mozilla Firefox Persistent UUID Disclosure

Highlights

CVE-2025-5788 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

June 6, 2025

CVE ID : CVE-2025-5788

Published : June 6, 2025, 5:15 p.m. | 44 minutes ago

Description : A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been rated as critical. Affected by this issue is some unknown functionality of the file /boafrm/formReflashClientTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Classic WTF: When it’s OK to GOTO

Overture Maps launches GERS, a system of unique IDs for global geospatial entities

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Generate awesome open graph images with Open Graphy

Generate awesome open graph images with Open Graphy

Defining a Dedicated Query Builder in Laravel 12 With PHP Attributes

pxlrbt/filament-activity-log

Linux Jargon Buster: What are Secure Boot & Shim Files?

Linux Jargon Buster: What are Secure Boot & Shim Files?

Fldigi – modem program for most of the digital modes used by radio amateurs

Lwan is an experimental, scalable, high performance HTTP server

CVE-2025-6428 – Firefox for Android URL Following Vulnerability

Citrix Bleed 2 Flaw Enables Token Theft; SAP GUI Flaws Risk Sensitive Data Exposure

New TeamViewer Vulnerability Puts Windows Systems at Risk of Privilege Escalation

CVE-2025-49277 – Unfoldwp Blogprise PHP Remote File Inclusion Vulnerability

CVE-2025-37825 – “Nvidia Nvmet Out-of-Bounds Access Vulnerability”

Copilot will generate personalized podcasts for users

Racing beyond DeepRacer: Debut of the AWS LLM League

CVE-2025-5788 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

CVE-2025-4445 – D-Link DIR-605L Wake-on-LAN Command Injection Vulnerability

CVE-2025-25026 – IBM Security Guardium Authentication Bypass Vulnerability

CVE-2025-34021 – Selea Targa SSRF

CVE-2025-6428 – Firefox for Android URL Following Vulnerability

Related Posts