Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-290

CWE-290

Authentication Bypass by Spoofing

Parent: CWE-1390 - Weak Authentication

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

535 vulnerabilities with CWE-290

CVE-2024-42364 MEDIUM

Homepage 0.9.1 - SSRF

CVE-2024-38807 MEDIUM

Org.springframework.boot Spring-boot-... - Authentication Bypass by Spoofing

CVE-2024-7981 MEDIUM

Google Chrome <128.0.6613.84 - XSS

CVE-2024-35539 MEDIUM

Typecho - Authentication Bypass by Spoofing

CVE-2024-35538 MEDIUM

Typecho - HTTP Request Smuggling

CVE-2024-41432 MEDIUM

Likeshop < 2.5.7.20210811 - Authentication Bypass by Spoofing

CVE-2024-27853 MEDIUM

macOS Sonoma <14.4 - Info Disclosure

CVE-2024-41107 HIGH

Apache Cloudstack < 4.18.2.2 - Authentication Bypass by Spoofing

CVE-2024-37430 MEDIUM

Patreon WordPress <1.9.0 - Auth Bypass

CVE-2024-6163 MEDIUM

Checkmk <2.3.0p10-2.0.0p39 - Auth Bypass

CVE-2024-37082 CRITICAL

Cloud Foundry - Auth Bypass

CVE-2024-39350 HIGH

Synology Bc500 Firmware - Authentication Bypass by Spoofing

CVE-2024-31802 MEDIUM

DESIGNA ABACUS <18 - Auth Bypass

CVE-2024-4846 MEDIUM

Devolutions Server < 2024.1.15.0 - Authentication Bypass by Spoofing

CVE-2024-39337 MEDIUM

Click Studios Passwordstate Core <9.8.9858 - Auth Bypass

CVE-2024-21518 HIGH

Opencart - Path Traversal

CVE-2024-30058 MEDIUM

Microsoft Edge < - SSRF

CVE-2024-36588 MEDIUM

Annonshop.app - Info Disclosure

CVE-2024-5812 LOW

Beyondtrust Beyondinsight Password Safe < 23.2.0.1293 - Authentication Bypass by Spoofing

CVE-2024-35749 LOW

Acurax Under Construction / Maintenan... - Authentication Bypass by Spoofing

CVE-2024-5037 HIGH

Redhat Openshift Container Platform - Authentication Bypass by Spoo...

CVE-2024-4358 CRITICAL KEV

Telerik Report Server Auth Bypass and Deserialization RCE

CVE-2024-20363 MEDIUM

Cisco Snort IPS - Auth Bypass

CVE-2024-32827 MEDIUM

RafflePress Giveaways and Contests <1.12.7 - Auth Bypass

CVE-2024-32786 MEDIUM

Royal-elementor-addons Royal Elemento... - Authentication Bypass by Spoofing

Previous Page 9 of 22 Next

Details

Vulnerabilities 535

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy