Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spoof vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2002-1648
Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail prior to 1.2.3 allows remote malicious users to send email as other users via an IMG URL with modified send_to and subject parameters.
Squirrelmail Squirrelmail 1.2.2
383
VMScore
CVE-2016-1943
Mozilla Firefox prior to 44.0 on Android allows remote malicious users to spoof the address bar via the scrollTo method.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox 43.0.4
Google Android
383
VMScore
CVE-2013-4488
libgadu prior to 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers.
Libgadu Libgadu
383
VMScore
CVE-2007-1529
The LLTD Responder in Microsoft Windows Vista does not send the Mapper a response to a DISCOVERY packet if another host has sent a spoofed response first, which allows remote malicious users to spoof arbitrary hosts via a network-based race condition, aka the "Total Spoof&qu...
Microsoft Windows Vista
320
VMScore
CVE-2016-3372
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevat...
Microsoft Windows Server 2008
Microsoft Windows Vista
383
VMScore
CVE-2014-7189
crpyto/tls in Go 1.1 prior to 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle malicious users to spoof clients via unspecified vectors.
Golang Go 1.2.1
Golang Go 1.3
Golang Go 1.2
Golang Go 1.2.2
Golang Go 1.1
Golang Go 1.1.1
Golang Go 1.1.2
Golang Go 1.3.1
NA
CVE-2022-22746
A race condition could have allowed bypassing the fullscreen notification which could have lead to a fullscreen window spoof being unnoticed.<br>*This bug only affects Firefox for Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR <...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
570
VMScore
CVE-2010-1802
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle malicious users to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use ...
Apple Libsecurity
Apple Mac Os X Server 10.5.8
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
Apple Mac Os X 10.5.8
445
VMScore
CVE-2007-1528
The LLTD Mapper in Microsoft Windows Vista allows remote malicious users to spoof hosts, and nonexistent bridge relationships, into the network topology map by using a MAC address that differs from the MAC address provided in the Real Source field of the LLTD BASE header of a HEL...
Microsoft Windows Vista
445
VMScore
CVE-2008-4788
Microsoft Internet Explorer 6 omits high-bit URL-encoded characters when displaying the address bar, which allows remote malicious users to spoof the address bar via a URL with a domain name that differs from an important domain name only in these characters, as demonstrated by u...
Microsoft Internet Explorer 6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »