68 matches found
CVE-2022-23646
Next.js is a React framework. Starting with version 10.0.0 and prior to version 12.1.0, Next.js is vulnerable to User Interface UI Misrepresentation of Critical Information. In order to be affected, the next.config.js file must have an images.domains array assigned and the image host assigned in...
CVE-2025-62224
User interface ui misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network...
CVE-2025-64667
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-64667
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
EUVD-2025-202237
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
PT-2025-50199
Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server affected versions not specified Description A flaw in Microsoft Exchange Server’s user interface UI can lead to the misrepresentation of critical information. This allows an unauthorized attacker to perform spoofing...
Microsoft Edge (Chromium-based) for Mac Spoofing Vulnerability
User interface ui misrepresentation of critical information in Microsoft Edge for iOS allows an unauthorized attacker to perform spoofing over a network...
PT-2025-49177
Name of the Vulnerable Software and Affected Versions Microsoft Edge for iOS affected versions not specified Description A flaw in the user interface UI of Microsoft Edge for iOS can allow an attacker to perform spoofing attacks over a network by misrepresenting critical information. This could...
CVE-2025-13082
User Interface UI Misrepresentation of Critical Information vulnerability in Drupal Drupal core allows Content Spoofing.This issue affects Drupal core: from 8.0.0 before 10.4.9, from 10.5.0 before 10.5.6, from 11.0.0 before 11.1.9, from 11.2.0 before 11.2.8...
PT-2025-47346
Name of the Vulnerable Software and Affected Versions Drupal versions 8.0.0 through 10.4.9 Drupal versions 10.5.0 through 10.5.6 Drupal versions 11.0.0 through 11.1.9 Drupal versions 11.2.0 through 11.2.8 Description A flaw exists in Drupal core that allows for content spoofing through a user...
Drupal core 安全漏洞
Drupal core is a free, open source content management system developed in PHP by the Drupal community. A security vulnerability in Drupal core versions prior to 10.4.9, 10.5.0 through 10.5.6, 11.0.0 through 11.1.9, and 11.2.0 through 11.2.8 stems from a misrepresentation of critical information i...
EUVD-2019-18592
Malware in sbrugna...
EUVD-2025-24277
Malicious code in bioql PyPI...
EUVD-2025-28860
Malicious code in bioql PyPI...
EUVD-2025-2328
Malicious code in bioql PyPI...
EUVD-2022-0986
Malicious code in bioql PyPI...
CVE-2025-9491
CVE-2025-9491 is a Microsoft Windows LNK file UI misrepresentation vulnerability. The flaw lies in how Windows handles .LNK/shortcuts, where crafted whitespace padding can hide malicious command-line arguments from the target user’s view, enabling arbitrary code execution in the context of the cu...
CVE-2025-49755
User interface ui misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
User interface ui misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...
CVE-2024-9163 User Interface (UI) Misrepresentation of Critical Information in GitLab
A business logic error in GitLab CE/EE affecting all versions starting from 12.1 prior to 17.10.7, 17.11 prior to 17.11.3 and 18.0 prior to 18.0.1 where an attacker can cause a branch name confusion in confidential MRs...