8015 matches found
CVE-2024-52269
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. The SaaS AI assistant ignores hidden content that is rendered after signing, misleading the user. For reference see: CVE-2024-52276 This issue affects DocuSign: through 2024-12-04...
CVE-2024-52277
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSeal allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed e.g. via Google Chrome - Examine the print preview: Will render the vulnerability only, not all laye...
CVE-2024-52276
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which i...
CVE-2024-52269 AI Assistant PDF Document Spoofing in DocuSign
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. The SaaS AI assistant ignores hidden content that is rendered after signing, misleading the user. For reference see: CVE-2024-52276 This issue affects DocuSign: through 2024-12-04...
CVE-2024-52269
The CVE-2024-52269 entry (and related CVE-2024-52276) concerns DocuSign UI where hidden content rendered after signing can be misrepresented, enabling content spoofing. Technical details in connected sources show the issue affects DocuSign up to 2024-12-04 and involves a misrendering of layered c...
CVE-2024-52277 PDF Document Spoofing in DocuSeal
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSeal allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed e.g. via Google Chrome - Examine the print preview: Will render the vulnerability only, not all laye...
CVE-2024-52277 PDF Document Spoofing in DocuSeal
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSeal allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed e.g. via Google Chrome - Examine the print preview: Will render the vulnerability only, not all laye...
CVE-2024-52276 PDF Document Spoofing in DocuSign
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which i...
CVE-2024-52276 PDF Document Spoofing in DocuSign
User Interface UI Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which i...
CVE-2024-52276
CVE-2024-52276 is a DocuSign UI-focused vulnerability described as a misrepresentation of critical information that enables content spoofing. The affected behavior is that the layer-flattened version of the document is not shown in various UI paths (Print, combined download, uncombined download),...
CVE-2024-45717
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability requires authentication and requires user interaction...
CVE-2024-45717
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability requires authentication and requires user interaction...
CVE-2024-45717 SolarWinds Platform Cross- Site Scripting Vulnerability
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability requires authentication and requires user interaction...
CVE-2024-45717
CVE-2024-45717 affects SolarWinds Platform with an XSS vulnerability in the UI (search and node information). The issue requires authentication and user interaction. Connected sources indicate this is a versioned flaw for SolarWinds Platform (NVD/NVD-like entries) and, per Nessus, applies to 2024...
CVE-2024-45717 SolarWinds Platform Cross- Site Scripting Vulnerability
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability requires authentication and requires user interaction...
PT-2024-35140 · Docusign · Docusign
Name of the Vulnerable Software and Affected Versions: DocuSign versions through 2024-12-04 Description: The issue concerns a User Interface UI Misrepresentation of Critical Information vulnerability that allows Content Spoofing. Specifically, the SaaS AI assistant ignores hidden content that is...
PT-2024-35146 · Docusign · Docusign
Name of the Vulnerable Software and Affected Versions: DocuSign versions through 2024-12-04 Description: The issue is related to a User Interface UI Misrepresentation of Critical Information vulnerability, which allows Content Spoofing. This means that the displayed version of a document does not...
Docusign API 安全漏洞
The Docusign API is a secure and scalable API from Docusign. A security vulnerability exists in the Docusign API that stems from misrepresentation of critical information in the user interface leading to content spoofing...
DocuSeal 安全漏洞
DocuSeal is an open source platform from DocuSeal, Inc. that provides secure and efficient digital document signing and processing. A security vulnerability exists in DocuSeal versions prior to 1.8.1 that stems from a user interface critical information misrepresentation vulnerability that allows...
Docusign API 安全漏洞
The Docusign API is a secure and extensible API from Docusign, Inc. A security vulnerability exists in the Docusign API that stems from misrepresentation of critical information in the user interface leading to content spoofing...