The unicode latin kra character can be used to spoof a standard k character in the addressbar. This allows for domain spoofing attacks as do not display as punycode text, allowing for user confusion. This vulnerability affects Firefox < 68.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 68.0 (excluding) |