EUVD-2013-0548

Malware in sbrugna...

CVE-2025-10290

Opening links via the contextual menu in Focus iOS for certain URL schemes would fail to load but would not refresh the toolbar correctly, allowing attackers to spoof websites if users were coerced into opening a link explicitly through a long-press This vulnerability affects Focus for iOS 143.0...

CVE-2025-10290 Opening links via the contextual menu in Focus for iOS would not update the toolbar UI correctly, allowing attackers to spoof websites

Opening links via the contextual menu in Focus iOS for certain URL schemes would fail to load but would not refresh the toolbar correctly, allowing attackers to spoof websites if users were coerced into opening a link explicitly through a long-press. This vulnerability was fixed in Focus for iOS...

PT-2025-37927

Name of the Vulnerable Software and Affected Versions: Focus for iOS versions prior to 143.0 Description: Opening links via the contextual menu for certain URL schemes would fail to load, but the toolbar would not refresh correctly. This could allow attackers to spoof websites if users were coerc...

CVE-2013-1299

Microsoft Windows Modern Mail allows remote attackers to spoof link targets via a crafted HTML e-mail message...

PT-2024-16303 · Unknown · Focus For Ios

Name of the Vulnerable Software and Affected Versions: Focus for iOS versions prior to 132 Description: The issue allows internal links to utilize the app scheme used for deeplinking, potentially circumventing some URL safety checks. This could result in link spoofing. Recommendations: For Focus...

CVE-2024-8399

Websites could utilize Javascript links to spoof URL addresses in the Focus navigation bar This vulnerability affects Focus for iOS 130...

a-blog cms vulnerable to URL spoofing

Overview a-blog cms provided by appleple Inc. is a content management system CMS. a-blog cms contains an URL spoofing vulnerability CWE-451. Yuji Tounai of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

a-blog cms security breach

a-blog cms is a Japanese content management system CMS. A security vulnerability exists in a-blog cms versions Ver.3.1.0 through Ver.3.1.8, which stems from the presence of a URL spoofing vulnerability that could force a product administrator to visit an arbitrary website when clicking on a link ...

PT-2023-6538 · Mozilla +9 · Firefox +11

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 117 Firefox ESR versions prior to 115.4 Thunderbird versions prior to 115.4.1 Description: The issue is related to errors in the representation of information in the user interface, allowing an attacker to conduct...

PT-2023-25578 · Mastodon · Mastodon

Name of the Vulnerable Software and Affected Versions: Mastodon versions 2.6.0 through 3.5.8 Mastodon versions 4.0.0 through 4.0.4 Mastodon versions 4.1.0 through 4.1.2 Description: Mastodon is a free, open-source social network server based on ActivityPub. An attacker can craft a verified profil...

Signal iOS Client 注入漏洞

Signal iOS Client is a free open source messaging application from Signal Open Source. It is used for simple private communication with friends. Signal for iOS had a security vulnerability prior to version 5.34 that stemmed from allowing URI spoofing via RTLO injection. It incorrectly rendered...

Meta Facebook Messenger 安全漏洞

Facebook WhatsApp is a suite of mobile applications from the American company Facebook that utilize the web to deliver text messages. The application uses the contact information in a smartphone to find contacts using the program to send texts, pictures, and more. Facebook WhatsApp suffers from a...

Meta Facebook Messenger 安全漏洞

Meta Facebook Messenger is an instant messaging software/application from Meta, Inc. that provides text and voice services. A security vulnerability exists in Meta Facebook Messenger that stems from an inability to properly present URI messages to the user, which could lead to URI spoofing via...

Windows Explorer Preview Pane HTML File Link Spoofing

Exploit Title: Windows Explorer Preview Pane HTML File Link Spoofing Vulnerability Google Dork: n/a Date: December 25th, 2021 Exploit Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link: http://www.microsoft.com/ Version: Windows 7, 8.1, 10, 11 x86/x64 Tested on:...

Microsoft Windows Explorer Preview Pane HTML File Link Spoofing Vulnerability

The Windows Explorer Preview Pane feature allows for spoofing of links contained in an HTML based file because upon moving the mouse over the link nothing happens and it cannot be right-clicked to show the actual target. Exploit Title: Windows Explorer Preview Pane HTML File Link Spoofing...

Four Bugs in Microsoft Teams Left Platform Vulnerable Since March

UPDATE Four vulnerabilities in Microsoft Teams, unpatched since March, allowed link spoofing of URLs and opened the door to DoS attacks against Android users, researchers said. Researchers from Positive Security discovered four bugs in the feature earlier this year and told Microsoft about the...

Vulnerability fixed in Kibana

A vulnerability has been fixed in Kibana. The vulnerability allows a malicious party the opportunity to spoof a URL and to cause a Denial-of-Service. Elastic has released bug fixes to address the vulnerability. fix. More information can be found on the pages below: Bug 1898572:...

Google Chrome Omnibox URL Spoofing Vulnerability (CNVD-2018-22392)

Google Chrome is a web browser developed by Google, Inc. and Omnibox is a real-time search engine. A security vulnerability exists in Omnibox in versions of Google Chrome prior to 70.0.3538.67. An attacker can exploit the vulnerability to forge URLs...

CVE-2018-5111

When the text of a specially formatted URL is dragged to the addressbar from page content, the displayed URL can be spoofed to show a different site than the one loaded. This allows for phishing attacks where a malicious page can spoof the identify of another site. This vulnerability affects...