Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spoof vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2007-4162
TIBCO Rendezvous (RV) 7.5.2 does not protect confidentiality or integrity of inter-daemon communication, which allows remote malicious users to capture and spoof traffic.
Tibco Rendezvous 7.5.2
4.3
CVSSv2
CVE-2018-0560
Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote malicious users to spoof the address bar via vectors related to URL display.
Hatena Hatena Bookmark
5.8
CVSSv2
CVE-2020-11814
A Host Header Injection vulnerability in qdPM 9.1 may allow an malicious user to spoof a particular header and redirect users to malicious websites.
Qdpm Qdpm 9.1
4.3
CVSSv2
CVE-2019-8338
The signature verification routine in the Airmail GPG-PGP Plugin, versions 1.0 (9) and previous versions, does not verify the status of the signature at all, which allows remote malicious users to spoof arbitrary email signatures by crafting a signed email with an invalid signatu...
Gpg-pgp Project Gpg-pgp
NA
CVE-2024-36052
RARLAB WinRAR prior to 7.00, on Windows, allows malicious users to spoof the screen output via ANSI escape sequences, a different issue than CVE-2024-33899.
NA
CVE-2022-41579
There is an insufficient authentication vulnerability in some Huawei band products. Successful exploit could allow the malicious user to spoof then connect to the band.
Huawei Hota-fara-b19 Firmware 11.1.2.40
5
CVSSv2
CVE-2005-1404
MyPHP Forum 1.0 allows remote malicious users to spoof the username by modifying the (1) nbuser parameter to post.php or (2) sender parameter to privmsg.php.
Myphp Forum Myphp Forum 3.0
Myphp Forum Myphp Forum 1.0
Myphp Forum Myphp Forum 2.0
5
CVSSv2
CVE-2008-0050
CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.4.11
4.3
CVSSv2
CVE-2021-3003
Agenzia delle Entrate Desktop Telematico 1.0.0 contacts the jws.agenziaentrate.it server over cleartext HTTP, which allows man-in-the-middle malicious users to spoof product updates.
5.5
CVSSv2
CVE-2020-4421
IBM WebSphere Application Liberty 19.0.0.5 up to and including 20.0.0.4 could allow an authenticated user using openidconnect to spoof another users identify. IBM X-Force ID: 180084.
Ibm Websphere Application Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »