Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-290

CWE-290

Authentication Bypass by Spoofing

Parent: CWE-1390 - Weak Authentication

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

575 vulnerabilities with CWE-290

CVE-2023-5616 MEDIUM

gnome-control-center 1.3-1.3.36.5 - Authentication Bypass via SSH Remote Login Status Mismanagement

CVE-2023-51327 MEDIUM

PHPJabbers Cleaning Business Software v1.0 - DoS

CVE-2023-51326 MEDIUM

PHPJabbers Cleaning Business Software <1.0 - DoS

CVE-2023-51323 MEDIUM

PHPJabbers Shared Asset Booking System <1.0 - DoS

CVE-2023-51321 MEDIUM

PHPJabbers Night Club Booking Software v1.0 - DoS

CVE-2023-41133 MEDIUM

Secure Admin IP < 2.0 - Authentication Bypass via IP Spoofing

CVE-2023-30464 HIGH

CoreDNS < 1.10.1 - DNS Cache Poisoning via Birthday Attack

CVE-2023-28452 HIGH

CoreDNS < 1.10.1 and < 1.11.0 - Denial of Service via Spoofed DNS Response

CVE-2023-48396 CRITICAL

Apache SeaTunnel <1.0.1 - Auth Bypass

CVE-2023-40702 HIGH

PingOne MFA Integration Kit - Auth Bypass

CVE-2023-40356 HIGH

PingOne MFA Integration Kit - Privilege Escalation

CVE-2023-52176 MEDIUM

miniorange Malware Scanner <4.7.1 - Auth Bypass

CVE-2023-51667 MEDIUM

FeedbackWP Rate my Post - Auth Bypass

CVE-2023-51543 MEDIUM

Metagauss RegistrationMagic <5.2.5.0 - Auth Bypass

CVE-2023-51542 MEDIUM

WPMU DEV Branda <3.4.14 - Auth Bypass

CVE-2023-49741 LOW

Coming soon and Maintenance mode < 3.7.3 - Authentication Bypass via IP Filtering

CVE-2023-48753 MEDIUM

10up Restricted Site Access <7.4.1 - Auth Bypass

CVE-2023-48271 MEDIUM

Maspik - Spam blacklist <0.10.3 - Auth Bypass

CVE-2023-47769 LOW

WP Maintenance <6.1.3 - Auth Bypass

CVE-2023-41134 MEDIUM

Antispam Bee < 2.11.3 - Authentication Bypass via IP Restriction Spoofing

CVE-2023-40332 MEDIUM

WP-PostRatings <= 1.91 - Rating Limit Bypass

CVE-2023-37865 MEDIUM

IP2Location Country Blocker <= 2.29.1 - Authentication Bypass by Spoofing

CVE-2023-50224 MEDIUM KEV

TP-Link TL-WR841N Firmware - Unauthenticated Authentication Bypass via HTTPD Service

CVE-2023-44447 MEDIUM

TP-Link TL-WR902AC Firmware - Unauthenticated Authentication Bypass via httpd Service

CVE-2023-51747 HIGH

Apache James <3.8.1-3.7.5 - SMTP Smuggling

Previous Page 13 of 23 Next

Details

Vulnerabilities 575

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy