Fallos del tipo CWE-451
231 resultadosCVE-2026-45650MEDIUMMicrosoft Bing Search Spoofing VulnerabilityEPSS 0.6%CVE-2022-39258HIGHmailcow-dockerized critical information misrepresentation can lead to phishing attacks through Swagger UIEPSS 0.6%CVE-2022-45404MEDIUMThrough a series of popup and <code>window.print()</code> calls, an attacker can cause a window to go fullscreen without the user seeing theEPSS 0.6%CVE-2026-0391MEDIUMMicrosoft Edge (Chromium-based) for Android Spoofing VulnerabilityEPSS 0.6%CVE-2023-0130MEDIUMInappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to spoof the EPSS 0.6%CVE-2026-33118MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.6%CVE-2021-27414MEDIUMUser interface misrepresentation of critical information in Hitachi ABB Power Grids Ellipse EAMEPSS 0.6%CVE-2022-38163LOWA Drag and Drop spoof vulnerability was discovered in F-Secure SAFE Browser for Android and iOS version 19.0 and below. Drag and drop operatEPSS 0.5%CVE-2022-3313MEDIUMIncorrect security UI in full screen in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to spoof security UI via a crafted HTEPSS 0.5%CVE-2025-29796MEDIUMMicrosoft Edge for iOS Spoofing VulnerabilityEPSS 0.5%CVE-2025-47963MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.5%CVE-2026-35429MEDIUMMicrosoft Edge (Chromium-based) for Android Spoofing VulnerabilityEPSS 0.5%CVE-2024-38082MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.5%CVE-2024-38093MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.5%CVE-2024-7529HIGHThe date picker could partially obscure security prompts. This could be used by a malicious site to trick a user into granting permissions. EPSS 0.5%CVE-2022-2800MEDIUMSourceCodester Gym Management System clickjackingEPSS 0.5%CVE-2025-30467MEDIUMThe issue was addressed with improved checks. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, watchOS 11.4EPSS 0.5%CVE-2022-20530MEDIUMIn strings.xml, there is a possible permission bypass due to a misleading string. This could lead to remote information disclosure of call lEPSS 0.5%CVE-2025-5986MEDIUMUnsolicited File Download, Disk Space Exhaustion, and Credential Leakage via mailbox:/// LinksEPSS 0.5%CVE-2024-6595LOWUncontrolled Search Path Element in GitLabEPSS 0.5%