Search queries in the default search engine could appear to have been the currently navigated URL if the search query itself was a well formed URL. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.
Mozilla
Information Disclosure
Firefox
NVD
CVSS 3.1
3.1
EPSS
0.4%