CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3798 matches found

unilogies/bumsys < v2.0.2 - Clickjacking

This template checks for the presence of clickjacking prevention headers in the HTTP response, aiming to identify vulnerabilities related to the improper restriction of rendered UI layers or frames in the GitHub repository unilogies/bumsys prior to version 2.0.2. id: CVE-2023-1362 info: name:...

8.4CVSS6.8AI score0.01411EPSS

Exploits1References4

OSV•added 5 days ago•2 views

UBUNTU-CVE-2026-12322

Clickjacking issue in the Widget: Gtk component. This vulnerability wa...

5.4CVSS5.2AI score0.00165EPSS

Exploits0References3

NVD•added 6 days ago•11 views

CVE-2026-12322

Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS0.00165EPSS

Exploits0References3

CVE•added 6 days ago•10 views

CVE-2026-12322

CVE-2026-12322 is a clickjacking vulnerability in the Gtk Widget component affecting Mozilla Firefox and Thunderbird. The issue, described across multiple sources, is due to a UI framing/embedding flaw that could enable deceptive UI interaction. Affected products were updated to mitigate the vuln...

5.4CVSS5.2AI score0.00165EPSS

Exploits0References3Affected Software2

EUVD•added 6 days ago•7 views

EUVD-2026-37068

Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.2AI score0.00165EPSS

Exploits0References3

Cvelist•added 6 days ago•24 views

CVE-2026-12322 Clickjacking issue in the Widget: Gtk component

Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

0.00165EPSS

Exploits0References3

Vulnrichment•added 6 days ago•7 views

CVE-2026-12322 Clickjacking issue in the Widget: Gtk component

Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.2AI score0.00165EPSS

Exploits0References3

AlpineLinux•added 6 days ago•5 views

CVE-2026-12322

Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.3AI score0.00165EPSS

Exploits0References3

Positive Technologies•added 6 days ago•8 views

PT-2026-49691

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 152 Thunderbird versions prior to 152 Description A clickjacking issue exists in the Widget: Gtk component. Clickjacking is a technique where an attacker tricks a user into clicking something different from what the...

9.6CVSS5.8AI score0.00374EPSS

Exploits0References49

Tenable Nessus•added 2026/06/11 12:0 a.m.•3 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Transmission vulnerability (USN-8404-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8404-1 advisory. It was discovered that Transmission had a clickjacking weakness in the browser-facing WebUI and RPC response paths. An attacker...

5.3CVSS5.6AI score0.00305EPSS

Exploits0References2

OSV•added 2026/06/08 11:8 p.m.•5 views

GHSA-W7W5-5GCP-38RW nebula-mesh: Web UI and API responses lack security headers (CSP, X-Frame-Options, HSTS, etc.)

None of the response paths in internal/web/ or internal/api/ set the standard browser-security headers. grep for Content-Security-Policy, X-Frame-Options, Strict-Transport-Security, X-Content-Type-Options, Referrer-Policy returns zero matches across the codebase. Impact The admin UI signs CA...

7.1CVSS5.5AI score0.00031EPSS

Exploits0References4

Ubuntu•added 2026/06/08 3:15 p.m.•8 views

USN-8404-1: Transmission vulnerability

It was discovered that Transmission had a clickjacking weakness in the browser-facing WebUI and RPC response paths. An attacker could possibly use this issue to trick users into performing unintended actions...

5.3CVSS5.5AI score0.00305EPSS

Exploits0

OSV•added 2026/06/08 3:15 p.m.•8 views

USN-8404-1 transmission vulnerability

5.3CVSS5.5AI score0.00305EPSS

Exploits0References2

Positive Technologies•added 2026/06/08 12:0 a.m.•7 views

PT-2026-47597

5.3CVSS5.5AI score0.00305EPSS

Exploits0References3

RedhatCVE•added 2026/06/03 3:11 p.m.•10 views

CVE-2026-38978

A flaw was found in Transmission. A clickjacking weakness exists in the browser-facing WebUI and RPC Remote Procedure Call response paths. This vulnerability could allow a remote attacker to trick a user into performing unintended actions by overlaying malicious content over legitimate interface...

5.3CVSS5.8AI score0.00305EPSS

Exploits0References2

SUSE CVE•added 2026/06/03 2:24 a.m.•9 views

SUSE CVE-2026-38978

transmission through 4.1.1 was found to have a clickjacking weakness in the browser-facing WebUI and RPC response paths...

5.8AI score0.00305EPSS

Exploits0References3

OSV•added 2026/06/03 12:0 a.m.•6 views

UBUNTU-CVE-2026-38978

transmission through 4.1.1 was found to have a clickjacking weakness in the browser-facing WebUI and RPC response paths...

5.3CVSS5.8AI score0.00305EPSS

Exploits0References3

Tenable Nessus•added 2026/06/03 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2026-38978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - transmission through 4.1.1 was found to have a clickjacking weakness in the browser-facing WebUI and RPC response paths. CVE-2026-38978 Note that Nessus relies ...

5.3CVSS5.5AI score0.00305EPSS

Exploits0References3

OSV•added 2026/06/02 4:16 p.m.•8 views

DEBIAN-CVE-2026-38978

transmission through 4.1.1 was found to have a clickjacking weakness in the browser-facing WebUI and RPC response paths...

5.3CVSS5.8AI score0.00305EPSS

Exploits0References1

NVD•added 2026/06/02 4:16 p.m.•13 views

CVE-2026-38978

transmission through 4.1.1 was found to have a clickjacking weakness in the browser-facing WebUI and RPC response paths...

5.3CVSS0.00305EPSS

Exploits0References3