Lucene search
K

34267 matches found

CVE
CVE
added yesterday34 views

CVE-2026-47737

CVE-2026-47737 affects the Puma Ruby/Rack web server. From 5.5.0 up to 7.2.1 and 8.0.2, it is vulnerable to source IP spoofing when set_remote_address proxy_protocol: :v1 is enabled and persistent connections are used. Puma re-parses PROXY protocol headers after each keep-alive on the same connec...

7.5CVSS6.1AI score0.00015EPSS
Exploits0References7
CVE
CVE
added yesterday6 views

CVE-2026-50659

Improper encoding or escaping of output in .NET allows an authorized attacker to perform spoofing over a network...

6.5CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday21 views

CVE-2026-48760

Symfony HtmlSanitizer/UrlSanitizer::parse() had an underinclusive denial for BiDi formatting characters and Unicode whitespace, allowing percent-encoded BiDi marks to bypass the check. The issue affects UrlSanitizer::parse() behavior from Symfony 6.1.0 up to 6.4.41, 7.4.13, and 8.0.13, where raw ...

5.3CVSS6.1AI score0.00025EPSS
Exploits0References5
CVE
CVE
added yesterday25 views

CVE-2026-45064

Symfony’s HtmlSanitizer UrlSanitizer.parse() is vulnerable in 6.1.0-BETA1 through 6.4.40, 7.4.12, and 8.0.12, because Unicode BiDi formatting characters pass through into href/src attributes, enabling visual spoofing where the link text differs from the destination. The issue is fixed in 6.4.40, ...

2.3CVSS6.1AI score0.00069EPSS
Exploits0References5
CVE
CVE
added yesterday16 views

CVE-2026-45063

Symfony X509Authenticator vulnerability (CVE-2026-45063) allows identity spoofing because an unanchored regex extracts emailAddress from the certificate Subject DN, enabling a trusted certificate with emailAddress embedded in another RDN (e.g., CN) to authenticate as another user. Impact is high ...

9.1CVSS6.1AI score0.00069EPSS
Exploits0References6
CVE
CVE
added yesterday5 views

CVE-2026-56181

Origin validation error in Windows Network Address Translation NAT allows an unauthorized attacker to perform spoofing over an adjacent network...

8.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-56157

Improper access control in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday3 views

CVE-2026-55135

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

4.6CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-55126

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

7.3CVSS6.1AI score
Exploits0References1
Vulnrichment
Vulnrichment
added yesterday5 views

CVE-2026-55126 Microsoft SharePoint Server Spoofing Vulnerability

...

7.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-55034

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

7.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday3 views

CVE-2026-55030

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

4.6CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday8 views

CVE-2026-55020

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

4.6CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-55021

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

7.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-55019

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

4.6CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-55016

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

4.6CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday9 views

CVE-2026-50684

Improper neutralization of input during web page generation 'cross-site scripting' in Active Directory Federation Services AD FS allows an authorized attacker to perform spoofing over a network...

4.8CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added yesterday7 views

CVE-2026-55008 Microsoft Exchange Server Spoofing Vulnerability

...

9.6CVSS
Exploits0References1
Microsoft KB
Microsoft KB
added yesterday17 views

Description of the security update for SharePoint Server 2016: June 9, 2026 (KB5002880)

None None...

9.8CVSS6.5AI score0.01982EPSS
Exploits0
Microsoft KB
Microsoft KB
added yesterday28 views

Description of the security update for SharePoint Server Subscription Edition: June 9, 2026 (KB5002873)

None None...

9.8CVSS6.6AI score0.01982EPSS
Exploits1
Rows per page
Query Builder