Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1021

CWE-1021

Improper Restriction of Rendered UI Layers or Frames

Parent: CWE-441 - Unintended Proxy or Intermediary ('Confused Deputy')

The web application does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interacting with.

372 vulnerabilities with CWE-1021

CVE-2026-0007 HIGH

WindowInfo.cpp - Privilege Escalation

CVE-2025-58405 MEDIUM

CGM CLININET - Clickjacking

CVE-2026-27511 MEDIUM

Shenzhen Tenda F3 V12.01.01.55 - Clickjacking

CVE-2026-26000 MEDIUM

XWiki Platform <17.9.0, <17.4.6, <16.10.13 - XSS

CVE-2026-20645 MEDIUM

iOS <26.3 & iPadOS <26.3 - Info Disclosure

CVE-2026-24839 MEDIUM

Dokploy <0.26.6 - CSRF

CVE-2026-23731 MEDIUM

WeGIA <3.6.2 - CSRF

CVE-2025-15032 HIGH

Dia <1.9.0 - XSS

CVE-2025-52987 MEDIUM

Juniper Networks Paragon Automation <24.1.1 - CSRF

CVE-2026-22918 MEDIUM

Web Application - CSRF

CVE-2025-65922 MEDIUM

PLANKA 2.0.0 - CSRF

CVE-2025-14812 HIGH

ArcSearch <1.45.2 - CSRF

CVE-2025-14809 HIGH

ArcSearch <1.12.6 - CSRF

CVE-2025-59849 MEDIUM

HCL BigFix Remote Control Lite Web Portal <10.1.0.0326 - XSS

CVE-2025-59479 MEDIUM

CHOCO TEI WATCHER mini - Info Disclosure

CVE-2025-14373 MEDIUM

Google Chrome <143.0.7499.110 - SSRF

CVE-2025-48639 HIGH

Java - Privilege Escalation

CVE-2025-48597 HIGH

Multiple Locations - Privilege Escalation

CVE-2025-63522 MEDIUM

FeehiCMS 2.1.1 - CSRF

CVE-2025-36149 MEDIUM

IBM Concert Software <2.0.0 - CSRF

CVE-2025-13132 HIGH

Browser - Info Disclosure

CVE-2025-0421 MEDIUM

Shopside <05022025 - Info Disclosure

Web Application - CSRF

CVE-2025-30191 MEDIUM

CVE-2025-28129 MEDIUM

Phpgurukul Hostel Mgt Sys 2.1 - CSRF

Page 1 of 15 Next

Details

Vulnerabilities 372

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy