Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code. This vulnerability affects Firefox < 141, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1.

Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code. This vulnerability affects Firefox < 141, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1.

Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code. This vulnerability affects Firefox < 141, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1.

Insufficient escaping in the \u201cCopy as cURL\u201d feature could po ...

Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code. This vulnerability affects Firefox < 141, Firefox ESR < 128.13, Firefox ESR < 140.1, Thunderbird < 141, Thunderbird < 128.13, and Thunderbird < 140.1.

ELSA-2025-12188: thunderbird security update (IMPORTANT)

ELSA-2025-12187: thunderbird security update (IMPORTANT)

ELSA-2025-11797: firefox security update (IMPORTANT)

ELSA-2025-11748: firefox security update (CRITICAL)

ELSA-2025-11747: firefox security update (CRITICAL)

Security update for MozillaFirefox

Security update for MozillaThunderbird

Security update for MozillaFirefox, MozillaFirefox-branding-SLE