Vulnerability Summary
HackerOne disclosed report --> https://hackerone.com/reports/3279441 by icecream_23
A restricted keyword bypass vulnerability exists on the Firefox Add-ons platform (addons.allizom.org) that allows an attacker to register a display name visually identical to “Mozilla” by using a Unicode homoglyph character. This circumvents the intended restriction and can be used to impersonate official accounts, mislead users, or perform social engineering attacks.
Log in to your account at: https://addons.allizom.org
Navigate to the Edit Profile page: https://addons.allizom.org/en-GB/firefox/users/edit
hackerone-reportsHackerOne disclosed report --> https://hackerone.com/reports/2389431 by ooooooo_q
hackerone-reportsHackerOne disclosed report --> https://hackerone.com/reports/3355766 by resurrect20
hackerone-reportsHackerOne disclosed report --> https://hackerone.com/reports/3670955 by glferreira-devsecops
No comments yet.
Be the first to share your thoughts
Log in to join the discussion.
Sign In