Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spoof vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-1648
Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail prior to 1.2.3 allows remote malicious users to send email as other users via an IMG URL with modified send_to and subject parameters.
Squirrelmail Squirrelmail 1.2.2
4.3
CVSSv2
CVE-2016-1943
Mozilla Firefox prior to 44.0 on Android allows remote malicious users to spoof the address bar via the scrollTo method.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox 43.0.4
Google Android
4.3
CVSSv2
CVE-2013-4488
libgadu prior to 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers.
Libgadu Libgadu
4.3
CVSSv2
CVE-2014-7189
crpyto/tls in Go 1.1 prior to 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle malicious users to spoof clients via unspecified vectors.
Golang Go 1.2.1
Golang Go 1.3
Golang Go 1.2
Golang Go 1.2.2
Golang Go 1.1
Golang Go 1.1.1
Golang Go 1.1.2
Golang Go 1.3.1
3.6
CVSSv2
CVE-2016-3372
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevat...
Microsoft Windows Server 2008
Microsoft Windows Vista
4.3
CVSSv2
CVE-2007-1529
The LLTD Responder in Microsoft Windows Vista does not send the Mapper a response to a DISCOVERY packet if another host has sent a spoofed response first, which allows remote malicious users to spoof arbitrary hosts via a network-based race condition, aka the "Total Spoof&qu...
Microsoft Windows Vista
NA
CVE-2022-22746
A race condition could have allowed bypassing the fullscreen notification which could have lead to a fullscreen window spoof being unnoticed.<br>*This bug only affects Firefox for Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR <...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
6.4
CVSSv2
CVE-2010-1802
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle malicious users to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use ...
Apple Libsecurity
Apple Mac Os X Server 10.5.8
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
Apple Mac Os X 10.5.8
3.6
CVSSv2
CVE-2005-1982
Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain controller when PKINIT smart card aut...
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Web
Microsoft Windows Xp
Microsoft Windows 2000
5
CVSSv2
CVE-2007-1528
The LLTD Mapper in Microsoft Windows Vista allows remote malicious users to spoof hosts, and nonexistent bridge relationships, into the network topology map by using a MAC address that differs from the MAC address provided in the Real Source field of the LLTD BASE header of a HEL...
Microsoft Windows Vista
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »