CWE-451

User Interface (UI) Misrepresentation of Critical Information

Parent: CWE-684 - Incorrect Provision of Specified Functionality

The user interface (UI) does not properly represent critical information to the user, allowing the information - or its source - to be obscured or spoofed. This is often a component in phishing attacks.

230 vulnerabilities with CWE-451
CVE-2017-0888 MEDIUM
Nextcloud Server <9.0.55, 10.0.2 - Info Disclosure
CVSS 4.3
CVE-2016-9473 MEDIUM
Brave Browser iOS < 1.2.18 and Android <= 1.9.56 - Full Address Bar Spoofing
CVSS 4.7
CVE-2016-9468 MEDIUM
Nextcloud Server <9.0.54, 10.0.1 & ownCloud Server <9.0.6, 9.1.2 - Content Spoofing via DAV
CVSS 5.3
CVE-2016-9467 MEDIUM
Nextcloud Server < 9.0.54 and 10.0.1 & ownCloud Server < 9.0.6 and 9.1.2 - Content Spoofing in Files App Location Bar
CVSS 5.3
CVE-2016-9460 MEDIUM
Nextcloud Server < 9.0.52 and ownCloud Server < 9.0.4 - Content Spoofing in Files App Location Bar
CVSS 5.3
Details
Vulnerabilities 230
Links
MITRE CWE Entry Search this CWE With Exploits